Описание
Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation but is later interpreted as an unsigned value, which triggers a heap-based buffer overflow.
Ссылки
- Broken Link
- Broken Link
- Mailing ListVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Mailing ListVendor Advisory
- Broken Link
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryUS Government Resource
- Broken Link
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 10.4.0 (включая) до 10.4.10 (включая)
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00085
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-681
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation but is later interpreted as an unsigned value, which triggers a heap-based buffer overflow.
EPSS
Процентиль: 26%
0.00085
Низкий
7.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-681