📄 macOS 10.13.4 (17E199) fgetattrlist Heap Overflow

Proof of concept Metasploit module that exploits a macOS version 10.13.4 heap overflow vulnerability. A kernel heap overflow exists in fgetattrlist due to missing lower-bound buffer size validation when writing returned attributes to caller-supplied memory...

📄 macOS 10.13.4 (17E199) fgetattrlist Heap Overflow

CVE-2018-4243 is a critical kernel heap overflow vulnerability in macOS and iOS affecting the fgetattrlist system call. The vulnerability allows local attackers to trigger kernel heap corruption, potentially leading to kernel panic, privilege escalation, or arbitrary code execution. This particul...

CVE-2018-4243

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Kernel" component. A buffer overflow in getvolattrlist allows attackers to execute arbitrary co...

CVE-2018-4243

CVE-2018-4243 is a kernel-level buffer overflow in Apple’s OS X/iOS kernel: a vulnerability in getvolattrlist affects iOS < 11.4, macOS < 10.13.5, tvOS < 11.4, and watchOS

MacOS/iOS kernel heap overflow due to lack of lower size check in getvolattrlist(CVE-2018-4243)

getvolattrlist takes a user controlled bufferSize argument via the fgetattrlist syscall. When allocating a kernel buffer to serialize the attr list to there's the following comment: / Allocate a target buffer for attribute results. Note that since we won't ever copy out more than the caller...

CVE-2018-4243

creationtimestamp| type| source ---|---|--- 2018-06-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44848 2020-10-09 14:05:37+00:00| seen| MISP/6d574aa3-3f1c-4275-acc4-bf5bc91f11b6 2025-08-31 03:01:33+00:00| seen| MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d...

Apple Mac OS X Security Updates (HT208849)-01

Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

About the security content of tvOS 11.4

About the security content of tvOS 11.4 This document describes the security content of tvOS 11.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...