Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to CVE-2006-5679. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-01-12 18:28
Updated : 2017-07-28 18:30
NVD link : CVE-2007-0229
Mitre link : CVE-2007-0229
JSON object : View
CWE
CWE-189
Numeric Errors
Products Affected
apple
- mac_os_x
- mac_os_x_server
freebsd
- freebsd