Published: 23/03/2011 Updated: 14/02/2012

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The i386_set_ldt system call in the kernel in Apple Mac OS X prior to 10.6.7 does not properly handle call gates, which allows local users to gain privileges via vectors involving the creation of a call gate entry.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x 10.6.1
apple mac os x 10.6.2
apple mac os x 10.6.0
apple mac os x 10.6.3
apple mac os x 10.6.4
apple mac os x 10.6.5
apple mac os x
apple mac os x server 10.6.1
apple mac os x server 10.6.2
apple mac os x server 10.6.0
apple mac os x server 10.6.3
apple mac os x server 10.6.4
apple mac os x server 10.6.5
apple mac os x server

/* Mac OS X < 1067 Kernel Panic Exploit CVE-2011-0182, Proof Of Concept Code Author - Chanam Park (hkpco) Date - 2011 06 Contact - chanampark@hkpcokr , hkpcokr , @hkpco Thanks for inspiration / x82, riaf */ // Compile: gcc -o CVE-2011-0182_PoC CVE-2011-0182_PoCc -m32 #include <architecture/i386/tableh> #include &lt ...

Proof of concept Mac OS X versions prior to 1067 kernel panic exploit ...

CWE-20 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html http://support.apple.com/kb/HT4581 http://securityreason.com/securityalert/8402 https://nvd.nist.gov https://www.exploit-db.com/exploits/17901/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-0182

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect