EUVD-2007-0320

Malware in sbrugna...

EUVD-2015-3803

Malware in sbrugna...

Calisto Trojan for macOS

An interesting aspect of studying a particular piece of malware is tracing its evolution and observing how the creators gradually add new monetization or entrenchment techniques. Also of interest are developmental prototypes that have had limited distribution or not even occurred in the wild. We...

CVE-2015-3800

The DiskImages component in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

Memory corruption

The DiskImages component in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

CVE-2015-3767

udf in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

Memory corruption

udf in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

CVE-2015-3800

The DiskImages component in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

CVE-2015-3767

udf in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service memory corruption and application crash via a malformed DMG image...

Design/Logic Flaw

The dohfstruncate function in Mac OS X 10.4.8 allows context-dependent attackers to cause a denial of service kernel panic via a crafted HFS+ filesystem in a DMG image, which causes an access of an invalid vnode structure during file removal...

CVE-2007-0299

Integer overflow in the byteswapsbin function in bsd/ufs/ufs/ufsbyteorder.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service kernel panic by mounting a crafted Unix File System UFS DMG image, which triggers an invalid pointer dereference...

CVE-2007-0299

The CVE-2007-0299 vulnerability affects Apple Mac OS X 10.4.8 where the integer overflow in the byte_swap_sbin() function of the UFS DMG handling (ufs_byte_order.c) can be triggered by mounting a crafted DMG image. This may cause an invalid pointer dereference leading to a denial-of-service (kern...

Cross site scripting

The ufslookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service kernel panic and possibly corrupt other filesystems by mounting a crafted UNIX File System UFS DMG image that contains a corrupted directory entry struct direct, related to the...

CVE-2007-0267

The ufslookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service kernel panic and possibly corrupt other filesystems by mounting a crafted UNIX File System UFS DMG image that contains a corrupted directory entry struct direct, related to the...

MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerability

Summary A specially crafted HFS+ filesystem in a DMG image can cause the dohfstruncate function to panic the kernel denial of service, when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+...

MOAB-12-01-2007: Apple DMG UFS ufs_lookup() Denial of Service Vulnerability

Summary A specially crafted UFS filesystem in a DMG image can cause the ufslookup function to call ufsdirbad when a corrupted directory entry is being read, leading to a kernel panic denial of service. This issue can't lead to arbitrary code execution. Affected versions This issue has been verifi...

Integer overflow

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

CVE-2007-0229

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

CVE-2007-0229

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

Apple Mac OSX 10.4.8 - DMG HFS+ DO_HFS_TRUNCATE Denial of Service

Apple Mac OSX 10.4.8 - DMG HFS+ DOHFSTRUNCATE Denial of Service source: https://www.securityfocus.com/bid/22042/info Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem. A successful exploit can allow an attacker to...