Apple Mac OS X DMG UFS FFS_MountFS Integer Overflow Vulnerability
BID:21993
Info
Apple Mac OS X DMG UFS FFS_MountFS Integer Overflow Vulnerability
| Bugtraq ID: | 21993 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0229 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 10 2007 12:00AM |
| Updated: | Mar 14 2007 02:54PM |
| Credit: | LMH <[email protected]> is credited with the discovery of this vulnerability. |
| Vulnerable: |
FreeBSD FreeBSD 6.1 -RELEASE Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8 |
| Not Vulnerable: |
Apple Mac OS X Server 10.4.9 Apple Mac OS X 10.4.9 |
Discussion
Exploit / POC
Apple Mac OS X DMG UFS FFS_MountFS Integer Overflow Vulnerability
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious DMG image file.
The following exploit is available:
To exploit this issue, an attacker must entice an unsuspecting user to open a malicious DMG image file.
The following exploit is available:
Solution / Fix
Apple Mac OS X DMG UFS FFS_MountFS Integer Overflow Vulnerability
Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.
Apple Mac OS X Server 10.4.8
Apple Mac OS X 10.4.8
Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.
Apple Mac OS X Server 10.4.8
-
Apple Mac OS X v10.4.9
http://www.apple.com/support/downloads/
Apple Mac OS X 10.4.8
-
Apple Mac OS X v10.4.9
http://www.apple.com/support/downloads/
References
Apple Mac OS X DMG UFS FFS_MountFS Integer Overflow Vulnerability
References:
References:
- Apple Fun: MOAB-10-01-2007: Apple DMG UFS ffs_mountfs() Integer Overflow Vulnera (Apple Fun)
- FreeBSD Homepage (FreeBSD)
- Mac OS X Homepage (Apple)