Info

Disclosure

Jan 19, 2007

Discovery

Unknown

Dates

Exploit

Jan 19, 2007

Solution

Unknown

Description

Mac OS X contains a flaw that may allow a local denial of service. The issue is triggered when shared_region_map_file_np() is called with a high mapping_count value, and will result in loss of availability for the platform.

Classification

Location: Local Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Public

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.

Products

Apple Computer, Inc.

Mac OS X

10.4.8

References

Security Tracker: 1017538
CVE ID: 2007-0430 (see also: NVD)
Secunia Advisory ID: 23823
SCIP VulDB ID: 2868
ISS X-Force ID: 31645
VUPEN Advisory: ADV-2007-0275
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-01/0463.html
Other Advisory URL: http://risesecurity.org/advisory.php?id=RISE-2007001.txt

Credit

Adriano Lima - adrianorisesecurity.org - RISE Security

Direct URL: http://osvdb.org/32942