Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.6
CVSSv2

CVE-2007-0267

Published: 17/01/2007 Updated: 10/06/2011
CVSS v2 Base Score: 6.6 | Impact Score: 9.2 | Exploitability Score: 3.9
VMScore: 665
Vector: AV:L/AC:L/Au:N/C:N/I:C/A:C
Subscribe to Freebsd

Vulnerability Summary

The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service (kernel panic) and possibly corrupt other filesystems by mounting a crafted UNIX File System (UFS) DMG image that contains a corrupted directory entry (struct direct), related to the ufs_dirbad function. NOTE: a third party states that the FreeBSD issue does not cross privilege boundaries.

Vulnerable Product Search on Vulmon Subscribe to Product

freebsd freebsd 6.1

apple mac os x 10.4.8

Exploits

Exploit DB: Apple Mac OSX 10.4.8 - DMG UFS UFS_LookUp Denial of Service
source: wwwsecurityfocuscom/bid/22036/info Apple Mac OS X is prone to a remote denial-of-service vulnerability This issue occurs when the UFS filesystem handler fails to handle specially crafted DMG images A successful exploit can allow a remote attacker to cause kernel panic, resulting in a denial-of-service condition Mac OS X 104 ...

References

CWE-399http://lists.freebsd.org/pipermail/freebsd-security/2007-January/004218.htmlhttp://projects.info-pull.com/moab/MOAB-12-01-2007.htmlhttp://www.securityfocus.com/bid/22036http://docs.info.apple.com/article.html?artnum=305214http://www.osvdb.org/32686http://www.securitytracker.com/id?1017751http://secunia.com/advisories/23721http://secunia.com/advisories/24479http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.htmlhttp://www.us-cert.gov/cas/techalerts/TA07-072A.htmlhttp://www.vupen.com/english/advisories/2007/0930http://www.vupen.com/english/advisories/2007/0171https://nvd.nist.govhttps://www.exploit-db.com/exploits/29452/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionCVE-2024-34909CVE-2024-3317SSTICVE-2024-3400CVE-2024-30051wirelessCVE-2024-4622CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook