Integer overflow

2007-12-0602:46:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.3%

JSON

Integer overflow in the load_threadstack function in the Mach-O loader (mach_loader.c) in the xnu kernel in Apple Mac OS X 10.4 through 10.5.1 allows local users to cause a denial of service (infinite loop) via a crafted Mach-O binary.

CPENameOperatorVersion
mac_os_xeq10.5.1
mac_os_xeq10.4

CPE	Name	Operator	Version
	mac_os_x	eq	10.5.1
	mac_os_x	eq	10.4

References

secunia.com/advisories/27884

www.digit-labs.org/files/exploits/xnu-macho-dos.c

www.securityfocus.com/bid/26700

www.vupen.com/english/advisories/2007/4095

exchange.xforce.ibmcloud.com/vulnerabilities/38854