Mac OS X kernel "fpathconf()" syscall fails to properly handle unknown file types

Overview A vulnerability in the Mac OS X kernel could allow an authenticated local attacker to cause a denial of service. Description The fpathconf system call provides a method for applications to determine the current value of a configurable system limit or option variable associated with a fil...

Mac OS X fpathconf() DoS

fpathconf call for unsupported file type causes system panic...

MOKB-09-11-2006

Title: Mac OS X fpathconf syscall denial of service Warning - wet floor! Description: Failure to handle unknown file types by the Mac OS X kernel XNU fpathconf syscall causes a kernel panic, leading to an exploitable local denial of service by non-privileged users. The bug was fixed by FreeBSD on...

CVE-2006-5836

The fpathconf syscall function in bsd/kern/kerndescrip.c in the Darwin kernel XNU 8.8.1 in Apple Mac OS X allows local users to cause a denial of service kernel panic and possibly execute arbitrary code via a file descriptor with an unrecognized file type...

CVE-2006-5836

The CVE-2006-5836 entry concerns the Mac OS X kernel (Darwin/XNU) fpathconf() syscall in kern_descrip.c, affecting Darwin 8.8.1. The vulnerability allows an authenticated local attacker to trigger a kernel panic (DoS) via a file descriptor associated with an unrecognized file type (e.g., semaphor...

CVE-2006-5836

The fpathconf syscall function in bsd/kern/kerndescrip.c in the Darwin kernel XNU 8.8.1 in Apple Mac OS X allows local users to cause a denial of service kernel panic and possibly execute arbitrary code via a file descriptor with an unrecognized file type...

Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service

Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service // source: https://www.securityfocus.com/bid/20982/info Apple Mac OS X is prone to a local denial-of-service vulnerability because the kernel fails to properly handle the execution of a system call. Exploiting this issue allows...

Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service

// source: https://www.securityfocus.com/bid/20982/info Apple Mac OS X is prone to a local denial-of-service vulnerability because the kernel fails to properly handle the execution of a system call. Exploiting this issue allows local, unprivileged users to crash affected kernels, denying further...

CVE-2003-1234

Integer overflow in the fcount counter in FreeBSD before 4.2 through 5.0 allows local users to cause a denial of service crash and possibly execute arbitrary code via multiple calls to 1 fpathconf and 2 lseek, which do not properly decrement fcount through a call to fdrop...

FreeBSD Security Advisory FreeBSD-SA-02:44.filedesc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-02:44.filedesc Security Advisory The FreeBSD Project Topic: file descriptor leak in fpathconf Category: core Module: kernel Announced: 2003-01-07 Credits: Joost P...

FreeBSD-SA-02:44.filedesc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-02:44.filedesc Security Advisory The FreeBSD Project Topic: file descriptor leak in fpathconf Category: core Module: kernel Announced: 2003-01-07 Credits: Joost...