OSVDB ID: 40683

Title: Apple Mac OS X Networking Component AppleTalk Message Handling Local Overflow

Info

Disclosure

Nov 14, 2007

Discovery

Aug 08, 2007

Dates

Exploit

Unknown

Solution

Nov 14, 2007

Description

A buffer overflow exists in Mac OS X. The Networking component fails to validate AppleTalk messages resulting in an arithmetic error which causes a heap overflow. With a specially crafted AppleTalk message, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Private, Exploit Unknown
Disclosure: Vendor Verified, Coordinated Disclosure

Solution

Upgrade to version 10.4.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Apple Computer, Inc.	Mac OS X	10.4.3
		10.4.4
		10.4.1
		10.4.6
		10.4.8
		10.4.2
		10.4.10
		10.4.5
		10.4.7
		10.4.9
		10.4

References

Security Tracker: 1018950
CVE ID: 2007-4268 (see also: NVD)
Bugtraq ID: 26444
Secunia Advisory ID: 27643
ISS X-Force ID: 38476
Related OSVDB ID: 40661 40662 40663 40664 40665 40666 40667 40668 40669 40670 40671 40672 40673 40674 40675 40676 40677 40678 40679 40680 40681 40682 40684 40685 40686 40687 40688 40689 40690 40691 40693
VUPEN Advisory: ADV-2007-3868
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-11/0212.html
http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=307041
Other Advisory URL: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=628
http://www.us-cert.gov/cas/techalerts/TA07-319A.html
CERT: TA07-319A

Credit

Sean Larsson - Verisign iDefense Labs

Direct URL: http://osvdb.org/40683

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Apple Computer, Inc.

Mac OS X

References

Credit