Apple Mac OS X DMG HFS+ DO_HFS_TRUNCATE Denial Of Service Vulnerability

Bugtraq ID:	22042
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Jan 13 2007 12:00AM
Updated:	Jan 15 2007 05:10PM
Credit:	LMH <[email protected]> is credited with the discovery of this vulnerability.
Vulnerable:	Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8
Not Vulnerable:

Apple Mac OS X DMG HFS+ DO_HFS_TRUNCATE Denial Of Service Vulnerability

Apple Mac OS X is prone to a denial-of-service vulnerability when handling a DMG image containing a specially crafted HFS+ filesystem.

A successful exploit can allow an attacker to cause a kernel panic, resulting in a denial-of-service condition.

Mac OS X 10.4.8 is vulnerable; other versions may also be affected.

Apple Mac OS X DMG HFS+ DO_HFS_TRUNCATE Denial Of Service Vulnerability

To exploit this issue, an attacker must entice an unsuspecting user to open a malicious DMG image file.

The following exploit is available:

• /data/vulnerabilities/exploits/MOAB-13-01-2007.dmg.gz

Apple Mac OS X DMG HFS+ DO_HFS_TRUNCATE Denial Of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

Apple Mac OS X DMG HFS+ DO_HFS_TRUNCATE Denial Of Service Vulnerability

References:

• Mac OS X Homepage (Apple)
  
• MOAB-13-01-2007: Apple DMG HFS+ do_hfs_truncate() Denial of Service Vulnerabilit (LMH )