Lucene search

[email protected]CVE-2007-4686

HistoryNov 15, 2007 - 1:46 a.m.

CVE-2007-4686

2007-11-1501:46:00

CWE-189

[email protected]

web.nvd.nist.gov

cve-2007-4686

integer signedness error

bsd

xnu kernel

apple

mac os x

denial of service

privilege escalation

6.2 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Integer signedness error in the ttioctl function in bsd/kern/tty.c in the xnu kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to cause a denial of service (system shutdown) or gain privileges via a crafted TIOCSETD ioctl request.

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.4.3
apple:mac_os_x_serverapple mac os x servereq10.4.3
apple:mac_os_x_serverapple mac os x servereq10.4.10
apple:mac_os_x_serverapple mac os x servereq10.4.9
apple:mac_os_xapple mac os xeq10.4.1
apple:mac_os_x_serverapple mac os x servereq10.4.2
apple:mac_os_x_serverapple mac os x servereq10.4.4
apple:mac_os_xapple mac os xeq10.4.10
apple:mac_os_x_serverapple mac os x servereq10.4.1
apple:mac_os_xapple mac os xeq10.4.9

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.4.3
apple:mac_os_x_server	apple mac os x server	eq	10.4.3
apple:mac_os_x_server	apple mac os x server	eq	10.4.10
apple:mac_os_x_server	apple mac os x server	eq	10.4.9
apple:mac_os_x	apple mac os x	eq	10.4.1
apple:mac_os_x_server	apple mac os x server	eq	10.4.2
apple:mac_os_x_server	apple mac os x server	eq	10.4.4
apple:mac_os_x	apple mac os x	eq	10.4.10
apple:mac_os_x_server	apple mac os x server	eq	10.4.1
apple:mac_os_x	apple mac os x	eq	10.4.9

Rows per page:

1-10 of 201

References

docs.info.apple.com/article.html?artnum=307041

lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

secunia.com/advisories/27643

securitytracker.com/id?1018950

www.securityfocus.com/archive/1/483753/100/200/threaded

www.securityfocus.com/bid/26444

www.trapkit.de/advisories/TKADV2007-001.txt

www.us-cert.gov/cas/techalerts/TA07-319A.html

www.vupen.com/english/advisories/2007/3868

exchange.xforce.ibmcloud.com/vulnerabilities/38470

6.2 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.4%

JSON

Related for CVE-2007-4686

prion1 securityvulns1 seebug1 nessus1