Apple Mac OS X UDTO Disk Image Remote Denial of Service Vulnerability

Bugtraq ID:	21236
Class:	Boundary Condition Error
CVE:	CVE-2006-6062
Remote:	Yes
Local:	No
Published:	Nov 21 2006 12:00AM
Updated:	Mar 15 2007 03:34AM
Credit:	LMH <[email protected]> discovered this issue.
Vulnerable:	Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8
Not Vulnerable:	Apple Mac OS X Server 10.4.9 Apple Mac OS X 10.4.9

Apple Mac OS X UDTO Disk Image Remote Denial of Service Vulnerability

Apple Mac OS X is prone to a remote denial-of-service vulnerability when handling specially crafted UDTO disk image files.

Successfully exploiting this issue allows remote users to crash affected computers, denying service to legitimate users. Attackers may also be able to exploit this issue for remote code execution, but this is reportedly unlikely.

Mac OS X 10.4.8 is vulnerable to this issue; other versions may also be affected.

Apple Mac OS X UDTO Disk Image Remote Denial of Service Vulnerability

The following image file will demonstrate this issue:

• /data/vulnerabilities/exploits/MOKB-21-11-2006.dmg.bz2

Apple Mac OS X UDTO Disk Image Remote Denial of Service Vulnerability

Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.


Apple Mac OS X Server 10.4.8

• Apple Mac OS X v10.4.9
  http://www.apple.com/support/downloads/

Apple Mac OS X 10.4.8

• Apple Mac OS X v10.4.9
  http://www.apple.com/support/downloads/

Apple Mac OS X UDTO Disk Image Remote Denial of Service Vulnerability

References:

• Apple Security Updates (Apple)
  
• Mac OS X Homepage (Apple)
  
• MOKB-21-11-2006: Mac OS X Apple UDTO HFS+ Disk Image Denial of Service (1) (MOKB)
  
• Vulnerability Note VU#214040 - Apple Mac OS X fails to properly handle corrupted (US-CERT)