Apple Mac OS X xnu <= 1228.3.13 ipv6-ipcomp Remote kernel DoS PoC

No description provided by source. / xnu-ipv6-ipcomp.c Copyright c 2008 by [email protected] Apple MACOS X xnu = 1228.3.13 ipv6-ipcomp remote kernel DoS POC by mu-b - Sun 24 Feb 2008 - Tested on: Apple MACOS X 10.5.1 xnu-1228.0.21/RELEASEI386...

Apple Mac OSX xnu 1228.3.13 - IPv6-ipcomp Remote kernel Denial of Service (PoC)

/ xnu-ipv6-ipcomp.c Copyright c 2008 by Apple MACOS X xnu md typo?. md = mpulldownm, off, sizeofipcomp, NULL; if !m - md = mpulldownm, off, sizeofipcomp, NULL; if !md bsd/netinet6/ipcompinput.c curiosly the same bug exists in ipcomp4input, but an explicit check is made to ensure there is enough...

Design/Logic Flaw

The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...

CVE-2008-0177

The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...

CVE-2008-0177

The ipcomp6input function in sys/netinet6/ipcompinput.c in the KAME project before 20071201 does not properly check the return value of the mpulldown function, which allows remote attackers to cause a denial of service system crash via an IPv6 packet with an IPComp header...

CVE-2008-0177

CVE-2008-0177 arises from an unchecked return value in ipcomp6_input (sys/netinet6/ipcomp_input.c) in the KAME project, where m_pulldown is not verified before use. This allows remote attackers to trigger a denial of service (system crash) by sending an IPv6 packet containing an IPComp header. Th...