CVE-2009-1236

2009-04-02T17:30:00
ID CVE-2009-1236
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:34:00

Description

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwrites a certain ifPort structure member.