Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2009-1237

Published: 02/04/2009 Updated: 29/09/2017
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
VMScore: 500
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Mac Os X

Vulnerability Summary

Multiple memory leaks in XNU 1228.3.13 and previous versions on Apple Mac OS X 10.5.6 and previous versions allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.

Vulnerable Product Search on Vulmon Subscribe to Product

apple mac os x 10.0.0

apple mac os x 10.0.1

apple mac os x 10.1.3

apple mac os x 10.1.4

apple mac os x 10.2.4

apple mac os x 10.2.5

apple mac os x 10.3.2

apple mac os x 10.3.3

apple mac os x 10.4.0

apple mac os x 10.4.1

apple mac os x 10.4.6

apple mac os x 10.4.7

apple mac os x 10.5.0

apple mac os x 10.5.1

apple mac os x 10.0.4

apple mac os x 10.1

apple mac os x 10.1.0

apple mac os x 10.2.0

apple mac os x 10.2.1

apple mac os x 10.2.8

apple mac os x 10.3

apple mac os x 10.3.6

apple mac os x 10.3.7

apple mac os x 10.3.8

apple mac os x 10.4.2

apple mac os x 10.4.3

apple mac os x 10.4.8

apple mac os x 10.5.4

apple mac os x 10.5.5

apple mac os x server 10.0.4

apple mac os x server 10.1

apple mac os x server 10.2

apple mac os x server 10.2.0

apple mac os x 10.0

apple mac os x 10.1.1

apple mac os x 10.1.2

apple mac os x 10.2.2

apple mac os x 10.2.3

apple mac os x 10.3.0

apple mac os x 10.3.1

apple mac os x 10.3.9

apple mac os x 10.4

apple mac os x 10.4.4

apple mac os x 10.4.5

apple mac os x 10.4.9

apple mac os x 10.5

apple mac os x

apple mac os x server 10.0

apple mac os x server 10.1.0

apple mac os x server 10.1.1

apple mac os x server 10.2.1

apple mac os x server 10.2.2

apple mac os x server 10.3.0

apple mac os x server 10.3.1

apple mac os x server 10.2.8

apple mac os x server 10.3

apple mac os x server 10.3.6

apple mac os x server 10.3.7

apple mac os x server 10.4.11

apple mac os x server 10.4.2

apple mac os x server 10.5

apple mac os x server 10.5.0

apple mac os x server 10.0.0

apple mac os x server 10.0.1

apple mac os x server 10.1.2

apple mac os x server 10.1.3

apple mac os x server 10.2.3

apple mac os x server 10.2.4

apple mac os x server 10.2.5

apple mac os x server 10.3.2

apple mac os x server 10.3.3

apple mac os x server 10.4

apple mac os x server 10.4.0

apple mac os x server 10.4.6

apple mac os x server 10.4.7

apple mac os x server 10.5.3

apple mac os x server 10.5.4

apple mac os x server 10.3.8

apple mac os x server 10.3.9

apple mac os x server 10.4.3

apple mac os x server 10.4.4

apple mac os x server 10.4.5

apple mac os x server 10.5.1

apple mac os x server 10.5.2

apple mac os x 10.0.2

apple mac os x 10.0.3

apple mac os x 10.1.5

apple mac os x 10.2

apple mac os x 10.2.6

apple mac os x 10.2.7

apple mac os x 10.3.4

apple mac os x 10.3.5

apple mac os x 10.4.10

apple mac os x 10.4.11

apple mac os x 10.5.2

apple mac os x 10.5.3

apple mac os x server 10.0.2

apple mac os x server 10.0.3

apple mac os x server 10.1.4

apple mac os x server 10.1.5

apple mac os x server 10.2.6

apple mac os x server 10.2.7

apple mac os x server 10.3.4

apple mac os x server 10.3.5

apple mac os x server 10.4.1

apple mac os x server 10.4.10

apple mac os x server 10.4.8

apple mac os x server 10.4.9

apple mac os x server 10.5.5

apple mac os x server

Exploits

Exploit DB: Apple Mac OSX xnu 1228.3.13 - 'Profil' Kernel Memory Leak/Denial of Service (PoC)
/* xnu-profil-leakc * * Copyright (c) 2008 by <mu-b@digit-labsorg> * * Apple MACOS X xnu <= 1228313 local kernel memory leak/DoS POC * by mu-b - Sat 16 Feb 2008 * * - Tested on: Apple MACOS X 1051 (xnu-122802~1/RELEASE_I386) * Apple MACOS X 1052 (xnu-1228313~1/RELEASE_I386) * * - Private Source Code -D ...
Exploit DB: Apple Mac OSX xnu 1228.3.13 - 'macfsstat' Local Kernel Memory Leak/Denial of Service
/* xnu-macfsstat-leakc * * Copyright (c) 2008 by <mu-b@digit-labsorg> * * Apple MACOS X xnu <= 1228313 local kernel memory leak/DoS POC * by mu-b - Sun 13 Apr 2008 * * - Tested on: Apple MACOS X 1051 (xnu-122802~1/RELEASE_I386) * Apple MACOS X 1052 (xnu-1228313~1/RELEASE_I386) * * - Private Source Code ...

References

CWE-399http://www.digit-labs.org/files/exploits/xnu-profil-leak.chttp://www.digit-labs.org/files/exploits/xnu-macfsstat-leak.chttp://www.informationweek.com/news/hardware/mac/showArticle.jhtml?articleID=216401181http://www.securityfocus.com/bid/34202http://secunia.com/advisories/34424https://www.exploit-db.com/exploits/8264https://www.exploit-db.com/exploits/8263https://nvd.nist.govhttps://www.exploit-db.com/exploits/8264/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook