exploitDog

GHSA-9p6w-24v2-vpv6

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwrites a certain ifPort structure member.

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwrites a certain ifPort structure member.

Ссылки

EPSS

Процентиль: 89%

0.05055

Низкий

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2009-1236

nvd

почти 17 лет назад

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwrites a certain ifPort structure member.

EPSS

Процентиль: 89%

0.05055

Низкий

CVE ID

Дефекты

CWE-119