Lucene search
+L

171 matches found

seebug
seebug
added 2007/01/17 12:0 a.m.15 views

Apple Mac OS X DMG UFS UFS_LookUp拒绝服务漏洞

Apple Mac OS X是一款基于BSD的苹果公司开发的操作系统。 Apple Mac OS X处理恶意DMG文件存在问题,远程攻击者可以利用漏洞对系统进行拒绝服务攻击。 问题是由于DMG映象文件中的特殊构建的UFS文件系统可引起ufslookup函数调用ufsdirbad,当破坏的目录条目被读取的时候,可导致内核出现问题,造成拒绝服务攻击。 Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8 目前没有解决方案: http://www.apple.com/macosx/ 可测试如下DMG文件:...

6.9AI score
Exploits0
seebug
seebug
added 2007/01/17 12:0 a.m.15 views

Apple Mac OS X DMG UFS Byte_Swap_Sbin()整数溢出漏洞

Apple Mac OS X是一款基于BSD的苹果公司开发的操作系统。 Apple Mac OS X处理恶意DMG文件存在整数溢出问题,远程攻击者可以利用漏洞对系统进行拒绝服务攻击,可能以系统进程权限执行任意指令。 UFS字节交换函数中的byteswapsbin函数此代码在FreeBSD和它的Mac OS X XNU中不包含,用于little和big-endian系统之间的文件流兼容存在整数溢出,精心构建恶意DMG文件,诱使用户解析,可导致非法内存地址访问,造成拒绝服务攻击。 Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8...

6.9AI score
Exploits0
cve
cve
added 2007/01/17 12:0 a.m.63 views

CVE-2007-0267

The CVE-2007-0267 issue affects Mac OS X 10.4.8 and FreeBSD 6.1 kernels, where the ufs_lookup function can be triggered to cause a denial of service (kernel panic) and potentially corrupt other filesystems by mounting a crafted UFS DMG image containing a corrupted directory entry (struct direct) ...

6.6CVSS7.6AI score0.00924EPSS
Exploits0References12Affected Software2
securityvulns
securityvulns
added 2007/01/16 12:0 a.m.54 views

MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerability

Summary A specially crafted HFS+ filesystem in a DMG image can cause the dohfstruncate function to panic the kernel denial of service, when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2007/01/16 12:0 a.m.50 views

MOAB-10-01-2007: Apple DMG UFS ffs_mountfs() Integer Overflow Vulnerability

Summary The ffsmountfs function, part of the UFS filesystem handling code shared between FreeBSD and Mac OS X XNU is affected by an integer overflow vulnerability, leading to an exploitable denial of service condition and potential arbitrary code execution. This issue is related to those publishe...

Exploits0
securityvulns
securityvulns
added 2007/01/16 12:0 a.m.91 views

Mac OS X / Apple Finder multiple file system parsing vulnerabilities

Buffer overflow on oversized DMG volume label in Apple Finder. Integer overflows on UFS DMG image parsing. DoS on processing UFS and HFS+ volumes...

7.8CVSS4.2AI score0.0807EPSS
Exploits2References5Affected Software2
securityvulns
securityvulns
added 2007/01/16 12:0 a.m.56 views

MOAB-12-01-2007: Apple DMG UFS ufs_lookup() Denial of Service Vulnerability

Summary A specially crafted UFS filesystem in a DMG image can cause the ufslookup function to call ufsdirbad when a corrupted directory entry is being read, leading to a kernel panic denial of service. This issue can't lead to arbitrary code execution. Affected versions This issue has been verifi...

Exploits0
cert
cert
added 2007/01/16 12:0 a.m.30 views

Apple Mac OS X UFS filesystem integer overflow vulnerability

Overview There is an integer overflow in the ffsmountfs function, which is used by Apple's OS X operating system to handle UFS disc images. Description Unix File System UFS is a file system used by Unix and other similar operating systems. Apple OS X supports UFS, partitions, and images. There is...

4.6CVSS8.5AI score0.00964EPSS
Exploits0References7
prion
prion
added 2007/01/13 2:28 a.m.25 views

Integer overflow

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

7.2CVSS7.1AI score0.01062EPSS
Exploits1References14Affected Software3
nvd
nvd
added 2007/01/13 2:28 a.m.28 views

CVE-2007-0229

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

7.2CVSS6.7AI score0.01062EPSS
Exploits1References14
cvelist
cvelist
added 2007/01/13 2:0 a.m.33 views

CVE-2007-0229

Integer overflow in the ffsmountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service panic and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to...

8AI score0.01062EPSS
Exploits1References14
seebug
seebug
added 2007/01/13 12:0 a.m.40 views

Apple Mac OS X Finder DMG卷标内存破坏漏洞

Apple Mac OS X是苹果家族机器所使用的操作系统。 Apple Mac OS X所捆绑的Finder程序在处理超长的卷标名时存在内存破坏漏洞,远程攻击者可能利用此漏洞控制用户机器。 如果攻击者能够诱骗用户加载包含有大于255字节卷标名称的DMG镜像的话,就会触发这个漏洞,导致拒绝服务或执行任意指令。 Apple Mac OS X 10.4.8 Apple MacOS X Server 10.4.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.apple.com !/usr/bin/ruby c 2006...

6.9AI score
Exploits0
exploitpack
exploitpack
added 2007/01/13 12:0 a.m.14 views

Apple Mac OSX 10.4.8 - DMG UFS UFS_LookUp Denial of Service

Apple Mac OSX 10.4.8 - DMG UFS UFSLookUp Denial of Service source: https://www.securityfocus.com/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit...

7.3AI score
Exploits0
exploitpack
exploitpack
added 2007/01/13 12:0 a.m.14 views

Apple Mac OSX 10.4.8 - DMG HFS+ DO_HFS_TRUNCATE Denial of Service

Apple Mac OSX 10.4.8 - DMG HFS+ DOHFSTRUNCATE Denial of Service source: https://www.securityfocus.com/bid/22042/info Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem. A successful exploit can allow an attacker to...

7.3AI score
Exploits0
seebug
seebug
added 2007/01/13 12:0 a.m.25 views

Apple Mac OS X DMG UFS镜像FFS_MountFS函数整数溢出漏洞

Apple Mac OS X是苹果家族计算机所使用的操作系统。 Apple Mac OS X的ffsmountfs函数在处理UFS文件系统磁盘镜像时存在整数溢出漏洞,如果攻击者能够诱骗用户加载恶意的UFS DMG镜像的话,就会触发堆溢出,导致执行任意代码。 Apple Mac OS X 10.4.8 Apple MacOS X Server 10.4.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.apple.com...

6.9AI score
Exploits0
exploitdb
exploitdb
added 2007/01/13 12:0 a.m.20 views

Apple Mac OSX 10.4.8 - DMG HFS+ DO_HFS_TRUNCATE Denial of Service

source: https://www.securityfocus.com/bid/22042/info Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem. A successful exploit can allow an attacker to cause a kernel panic, resulting in a denial-of-service conditio...

7.4AI score
Exploits0
exploitdb
exploitdb
added 2007/01/13 12:0 a.m.24 views

Apple Mac OSX 10.4.8 - DMG UFS UFS_LookUp Denial of Service

source: https://www.securityfocus.com/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to cause kernel panic, resulti...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/01/12 12:0 a.m.16 views

Apple Mac OSX 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow

Apple Mac OSX 10.4.8 - DMG UFS ByteSwapSbin Integer Overflow source: https://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploi...

0.5AI score
Exploits0
exploitdb
exploitdb
added 2007/01/12 12:0 a.m.17 views

Apple Mac OSX 10.4.8 - DMG UFS Byte_Swap_Sbin() Integer Overflow

source: https://www.securityfocus.com/bid/22022/info Apple Mac OS X is prone to a remote integer-overflow vulnerability. This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images. A successful exploit can allow a remote attacker to cause kernel panic, resultin...

7.4AI score
Exploits0
prion
prion
added 2007/01/11 11:28 a.m.25 views

Memory corruption

Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...

6.8CVSS7.7AI score0.0807EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder