Info

Disclosure

Jan 11, 2007

Discovery

Unknown

Dates

Exploit

Jan 12, 2007

Solution

Unknown

Description

A remote overflow exists in Mac OS X. The byte_swap_sbin() function fails to validate UFS image data resulting in an integer overflow. With a specially crafted file, an attacker can cause a kernel panic resulting in a loss of availability.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Public

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): -Disable the "opening safe files after downloading" option

Products

Apple Computer, Inc.

Mac OS X

10.4.8

References

CVE ID: 2007-0299 (see also: NVD)
Secunia Advisory ID: 23725
SCIP VulDB ID: 2832
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=305214
Other Advisory URL: http://projects.info-pull.com/moab/MOAB-11-01-2007.html

Credit

LMH - lmhinfo-pull.com -

Direct URL: http://osvdb.org/31653