171 matches found
Apple Mac OS X DMG UFS UFS_LookUp拒绝服务漏洞
Apple Mac OS X是一款基于BSD的苹果公司开发的操作系统。 Apple Mac OS X处理恶意DMG文件存在问题,远程攻击者可以利用漏洞对系统进行拒绝服务攻击。 问题是由于DMG映象文件中的特殊构建的UFS文件系统可引起ufslookup函数调用ufsdirbad,当破坏的目录条目被读取的时候,可导致内核出现问题,造成拒绝服务攻击。 Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8 目前没有解决方案: http://www.apple.com/macosx/ 可测试如下DMG文件:...
Apple Mac OS X DMG UFS Byte_Swap_Sbin()整数溢出漏洞
Apple Mac OS X是一款基于BSD的苹果公司开发的操作系统。 Apple Mac OS X处理恶意DMG文件存在整数溢出问题,远程攻击者可以利用漏洞对系统进行拒绝服务攻击,可能以系统进程权限执行任意指令。 UFS字节交换函数中的byteswapsbin函数此代码在FreeBSD和它的Mac OS X XNU中不包含,用于little和big-endian系统之间的文件流兼容存在整数溢出,精心构建恶意DMG文件,诱使用户解析,可导致非法内存地址访问,造成拒绝服务攻击。 Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8...
CVE-2007-0267
The CVE-2007-0267 issue affects Mac OS X 10.4.8 and FreeBSD 6.1 kernels, where the ufs_lookup function can be triggered to cause a denial of service (kernel panic) and potentially corrupt other filesystems by mounting a crafted UFS DMG image containing a corrupted directory entry (struct direct) ...
MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerability
Summary A specially crafted HFS+ filesystem in a DMG image can cause the dohfstruncate function to panic the kernel denial of service, when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+...
MOAB-10-01-2007: Apple DMG UFS ffs_mountfs() Integer Overflow Vulnerability
Summary The ffsmountfs function, part of the UFS filesystem handling code shared between FreeBSD and Mac OS X XNU is affected by an integer overflow vulnerability, leading to an exploitable denial of service condition and potential arbitrary code execution. This issue is related to those publishe...
Mac OS X / Apple Finder multiple file system parsing vulnerabilities
Buffer overflow on oversized DMG volume label in Apple Finder. Integer overflows on UFS DMG image parsing. DoS on processing UFS and HFS+ volumes...
MOAB-12-01-2007: Apple DMG UFS ufs_lookup() Denial of Service Vulnerability
Summary A specially crafted UFS filesystem in a DMG image can cause the ufslookup function to call ufsdirbad when a corrupted directory entry is being read, leading to a kernel panic denial of service. This issue can't lead to arbitrary code execution. Affected versions This issue has been verifi...
Apple Mac OS X UFS filesystem integer overflow vulnerability
Overview There is an integer overflow in the ffsmountfs function, which is used by Apple's OS X operating system to handle UFS disc images. Description Unix File System UFS is a file system used by Unix and other similar operating systems. Apple OS X supports UFS, partitions, and images. There is...
Integer overflow
Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...
CVE-2007-0229
Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...
CVE-2007-0229
Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...
Apple Mac OS X Finder DMG卷标内存破坏漏洞
Apple Mac OS X是苹果家族机器所使用的操作系统。 Apple Mac OS X所捆绑的Finder程序在处理超长的卷标名时存在内存破坏漏洞,远程攻击者可能利用此漏洞控制用户机器。 如果攻击者能够诱骗用户加载包含有大于255字节卷标名称的DMG镜像的话,就会触发这个漏洞,导致拒绝服务或执行任意指令。 Apple Mac OS X 10.4.8 Apple MacOS X Server 10.4.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.apple.com !/usr/bin/ruby c 2006...
Apple Mac OSX 10.4.8 - DMG UFS UFS_LookUp Denial of Service
Apple Mac OSX 10.4.8 - DMG UFS UFSLookUp Denial of Service source: https://www.securityfocus.com/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit...
Apple Mac OSX 10.4.8 - DMG HFS+ DO_HFS_TRUNCATE Denial of Service
Apple Mac OSX 10.4.8 - DMG HFS+ DOHFSTRUNCATE Denial of Service source: https://www.securityfocus.com/bid/22042/info Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem. A successful exploit can allow an attacker to...
Apple Mac OS X DMG UFS镜像FFS_MountFS函数整数溢出漏洞
Apple Mac OS X是苹果家族计算机所使用的操作系统。 Apple Mac OS X的ffsmountfs函数在处理UFS文件系统磁盘镜像时存在整数溢出漏洞,如果攻击者能够诱骗用户加载恶意的UFS DMG镜像的话,就会触发堆溢出,导致执行任意代码。 Apple Mac OS X 10.4.8 Apple MacOS X Server 10.4.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.apple.com...
Apple Mac OSX 10.4.8 - DMG HFS+ DO_HFS_TRUNCATE Denial of Service
source: https://www.securityfocus.com/bid/22042/info Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem. A successful exploit can allow an attacker to cause a kernel panic, resulting in a denial-of-service conditio...
Apple Mac OSX 10.4.8 - DMG UFS UFS_LookUp Denial of Service
source: https://www.securityfocus.com/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to cause kernel panic, resulti...
Apple Mac OSX 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow
Apple Mac OSX 10.4.8 - DMG UFS ByteSwapSbin Integer Overflow source: https://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploi...
Apple Mac OSX 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow
source: https://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to cause kernel panic, resultin...
Memory corruption
Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...