[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-4866Date: (C)2006-09-19   (M)2023-12-22


Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.6
Exploit Score: 3.9
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-20034
http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049452.html
http://www.netragard.com/pdfs/research/apple-kext-tools-20060822.txt

CPE    72
cpe:/o:apple:mac_os_x_server:10.3.8
cpe:/o:apple:mac_os_x_server:10.3.7
cpe:/o:apple:mac_os_x_server:10.3.6
cpe:/o:apple:mac_os_x_server:10.3.5
...

© SecPod Technologies