CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 2CVE-2006-6129 – Apple Mac OSX 10.4.x - Mach-O Binary Loading Integer Overflow
https://notcve.org/view.php?id=CVE-2006-6129
Integer overflow in the fatfile_getarch2 in Apple Mac OS X allows local users to cause a denial of service and possibly execute arbitrary code via a crafted Mach-O Universal program that triggers memory corruption. Desbordamiento de enteros en fatfile_getarch2 en Apple Mac OS X permite a un usuario local provocar denegación de servicio y posiblemente ejecutar código de su elección a través del programa Mach-O Universal manipulado que dispara una corrupción de memoria. • https://www.exploit-db.com/exploits/29190 http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://projects.info-pull.com/mokb/MOKB-26-11-2006.html http://secunia.com/advisories/23088 http://secunia.com/advisories/24479 http://www.osvdb.org/30706 http://www.securityfocus.com/bid/21291 http://www.securitytracker.com/id?1017751 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http:// •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 2CVE-2006-6127
https://notcve.org/view.php?id=CVE-2006-6127
Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. Núcleo Apple Mac OS X permite a un usuario local provocar denegación de servicio a través de un proceso que usa kevent para registrar una cola o un evento, entonces se bifurca en un proceso hijo que usa kevent para registrar un evento para la misma cola que la del padre. • http://docs.info.apple.com/article.html?artnum=307041 http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html http://projects.info-pull.com/mokb/MOKB-24-11-2006.html http://secunia.com/advisories/23114 http://secunia.com/advisories/27643 http://www.osvdb.org/30695 http://www.securityfocus.com/bid/21285 http://www.securityfocus.com/bid/26444 http://www.us-cert.gov/cas/techalerts/TA07-319A.html http://www.vupen.com/english/advisories/2006/4715 http: •
CVSS: 9.3EPSS: 5%CPEs: 2EXPL: 2CVE-2006-6061
https://notcve.org/view.php?id=CVE-2006-6061
com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. NOTE: the severity of this issue has been disputed by a third party, who states that the impact is limited to a denial of service (kernel panic) due to a vm_fault call with a non-aligned address. com.apple.AppleDiskImagecontroller en Apple Mac OS X 10.4.8, y posiblemente otras versiones, permite a atacantes remotos ejecutar código de su elección mediante una imagen DMG mal formada que provoca una corrupción de memoria. NOTA: la severidad de este asunto ha sido impugnada por una tercera parte, la cual afirma que el impacto está limitado a una denegación de servicio (error irrecuperable en el núcleo del sistema, kernel panic) debido a una llamada vm_faultcon una dirección no alineada. • http://alastairs-place.net/2006/11/dmg-vulnerability http://docs.info.apple.com/article.html?artnum=305214 http://kernelfun.blogspot.com/2006/11/more-mokb-20-11-2006-related-news.html http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://projects.info-pull.com/mokb/MOKB-20-11-2006.html http://secunia.com/advisories/23012 http://secunia.com/advisories/24479 http://securitytracker.com/id?1017260 http://www.kb.cert.org/vuls/id/367424 http://ww •
CVSS: 5.1EPSS: 27%CPEs: 2EXPL: 4CVE-2006-6062 – Apple Mac OSX 10.4.8 - UDIF Disk Image Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-6062
Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption. Vulnerabilidad no especificada en Apple Mac OSX 10.4.8, y posiblemente otras versiones, permite a atacantes remotos provocar una denegación de servicio (caída) mediante una imagen de disco UDTO HFS+ mal formada, como por ejemplo con "sectores dañados", lo cual provoca una corrupción de memoria. • https://www.exploit-db.com/exploits/29144 https://www.exploit-db.com/exploits/29161 http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://projects.info-pull.com/mokb/MOKB-21-11-2006.html http://secunia.com/advisories/23012 http://secunia.com/advisories/23062 http://secunia.com/advisories/24479 http://securitytracker.com/id?1017260 http://www.osvdb.org/30510 http://www.securityfocus.com/bid& •
CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 2CVE-2006-6015 – Apple Safari 2.0.4 - JavaScript Regular Expression Match Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-6015
Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression. Desbordamiento de búfer en la implementación de JavaScript en Safari de Apple Mac OS X 10.4 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) mediante un argumento grande del método exec de una expresión regular. • https://www.exploit-db.com/exploits/29007 http://www.securityfocus.com/archive/1/451542/100/0/threaded http://www.securityfocus.com/archive/1/451823/100/0/threaded http://www.securityfocus.com/bid/21053 •