Info

Disclosure

Nov 27, 2006

Discovery

Unknown

Dates

Exploit

Nov 27, 2006

Solution

Unknown

Description

Mac OS X contains a flaw that may allow a local denial of service. The issue is triggered when specially crafted data is passed to an Appletalk socket via an AIOCREGLOCALZN ioctl command, and will result in loss of availability for the platform.

Classification

Location: Local Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: Vendor Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Apple Computer, Inc.

Mac OS X

10.4.8

References

Security Tracker: 1017751
CVE ID: 2006-6130 (see also: NVD)
Bugtraq ID: 21317
Secunia Advisory ID: 23134 24479
ISS X-Force ID: 30552
VUPEN Advisory: ADV-2006-4746 ADV-2007-0930
Vendor Specific News/Changelog Entry: http://docs.info.apple.com/article.html?artnum=305214
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=305214
Other Advisory URL: http://projects.info-pull.com/mokb/MOKB-27-11-2006.html

Credit

LMH - lmhinfo-pull.com -

Direct URL: http://osvdb.org/30722