Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:838404
HistoryOct 02, 2006 - 12:00 a.m.

Apple kernel exception handling vulnerability

2006-10-0200:00:00
www.kb.cert.org
22

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

5.2%

JSON

Overview

Apple Mac OS X may be vulnerable to privilege escalation via the Mach exception ports in the kernel. This vulnerability may allow a local user to execute arbitrary code with elevated privileges.

Description

Mach 3.0 is an open source microkernel used by Mac OS X that provides memory management, memory protection, process scheduling, and interprocess communication services. According to Apple Security Update 2006-006:

An error handling mechanism in the kernel, known as Mach exception ports, provides the ability to control programs when certain types of errors are encountered. Malicious local users could use this mechanism to execute arbitrary code in privileged programs if an error is encountered.
This vulnerability affects Mac OS X v10.4 through Mac OS X v10.4.7, Mac OS X Server v10.4 through Mac OS X Server v10.4.7, and may affect other Mach-based Unix operating systems.

Impact

A local user may be able to execute arbitrary code with elevated privileges.

Solution

Upgrade
Apple has addressed this issue in Apple Security Update 2006-006.

Vendor Information

838404

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Apple Computer, Inc. __ Affected

Updated: October 02, 2006

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

Refer to <http://docs.info.apple.com/article.html?artnum=304460&gt;

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23838404 Feedback>).

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

This issue was reported in Apple Security Update 2006-006. Apple credits Dino Dai Zovi of Matasano Security for reporting this issue.

This document was written by Chris Taschner.

Other Information

CVE IDs: CVE-2006-4392
Severity Metric: 1.38 Date Public:

Related

nvd 1
zdt 1
exploitpack 1
cvelist 1
exploitdb 2
cve 1
seebug 2
nessus 2
nvd
nvd
CVE-2006-4392
2006-10-03 04:02:00
zdt
zdt
Mac OS X <= 10.4.7 Mach Exception Handling Local Exploit (10.3.x 0day)
2006-09-30 00:00:00
exploitpack
exploitpack
Apple Mac OSX 10.4.7 - Mach Exception Handling Local (10.3.x)
2006-09-30 00:00:00
cvelist
cvelist
CVE-2006-4392
2006-10-02 20:00:00
exploitdb
exploitdb
Apple Mac OSX 10.4.7 - Mach Exception Handling Privilege Escalation
2006-09-30 00:00:00
Apple Mac OSX 10.4.7 - Mach Exception Handling Local (10.3.x)
2006-09-30 00:00:00
cve
cve
CVE-2006-4392
2006-10-03 04:02:00
seebug
seebug
Mac OS X &lt;= 10.4.7 Mach Exception Handling Local Exploit (10.3.x 0day)
2006-09-30 00:00:00
Mac OS X <= 10.4.7 - Mach Exception Handling Local Exploit (10.3.x 0day)
2014-07-01 00:00:00
nessus
nessus
Mac OS X 10.4.x < 10.4.8 Multiple Vulnerabilities
2006-09-29 00:00:00
Mac OS X Multiple Vulnerabilities (Security Update 2006-006)
2006-09-29 00:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

5.2%

JSON
Related for VU:838404
nvd1zdt1exploitpack1cvelist1exploitdb2cve1seebug2nessus2