4.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
6.2 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.7%
Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.
secunia.com/advisories/34424
www.digit-labs.org/files/exploits/xnu-macfsstat-leak.c
www.digit-labs.org/files/exploits/xnu-profil-leak.c
www.informationweek.com/news/hardware/mac/showArticle.jhtml?articleID=216401181
www.securityfocus.com/bid/34202
www.exploit-db.com/exploits/8263
www.exploit-db.com/exploits/8264