CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 3CVE-2006-5836 – Apple Mac OSX 10.x - FPathConf System Call Local Denial of Service
https://notcve.org/view.php?id=CVE-2006-5836
The fpathconf syscall function in bsd/kern/kern_descrip.c in the Darwin kernel (XNU) 8.8.1 in Apple Mac OS X allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a file descriptor with an unrecognized file type. La función fpathconf syscall en bsd/kern/kern_descrip.c en el Darwin kernel (XNU) 8.8.1 in Apple Mac OS X permite a atacantes locales provocar una denegación de servicio (pánico de kernel) y posiblemente ejecutar código de su elección mediante un descriptor de fichero con un tipo de fichero no reconocido. • https://www.exploit-db.com/exploits/28948 http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://projects.info-pull.com/mokb/MOKB-09-11-2006.html http://secunia.com/advisories/22808 http://secunia.com/advisories/24479 http://www.osvdb.org/30216 http://www.securityfocus.com/bid/20982 http://www.securitytracker.com/id?1017751 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http:// •
CVSS: 7.5EPSS: 12%CPEs: 2EXPL: 4CVE-2006-5710 – Apple Airport - 802.11 Probe Response Kernel Memory Corruption (PoC)
https://notcve.org/view.php?id=CVE-2006-5710
The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via an 802.11 probe response frame without any valid information element (IE) fields after the header, which triggers a heap-based buffer overflow. El controlador Aeropuerto para cierto Orinoco basados en tarjetas de aeropuerto en Darwin kernel 8.8.0 en Apple Mac OS X 10.4.8, y posiblemente otras versiones, permite a un atacante remoto ejecutar código de su elección a través de una vetana de respuesta de prueba 802.11 sin ningún campo elemento de validación de información (IE) después de la cabecera, lo cual dispara un desbordamiento de búfer basado en pila. • https://www.exploit-db.com/exploits/2700 http://docs.info.apple.com/article.html?artnum=304829 http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html http://projects.info-pull.com/mokb/MOKB-01-11-2006.html http://secunia.com/advisories/22679 http://secunia.com/advisories/23155 http://securitytracker.com/id?1017151 http://www.kb.cert.org/vuls/id/191336 http://www.osvdb.org/30180 http://www.securityfocus.com/bid/20862 http://www.us-cert.gov/ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 2.1EPSS: 0%CPEs: 16EXPL: 2CVE-2005-0975
https://notcve.org/view.php?id=CVE-2005-0975
Integer signedness error in the parse_machfile function in the mach-o loader (mach_loader.c) for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service (CPU consumption) via a crafted mach-o header. • http://felinemenace.org/advisories/macosx.txt http://lists.apple.com/archives/security-announce/2005/Apr/msg00000.html http://marc.info/?l=bugtraq&m=110616533903671&w=2 http://secunia.com/advisories/13902 http://securitytracker.com/id?1012941 http://securitytracker.com/id?1013735 http://www.ciac.org/ciac/bulletins/p-185.shtml http://www.securityfocus.com/bid/12314 http://www.vupen.com/english/advisories/2005/0041 https://exchange.xforce.ibmcloud.com/vulnerabilities/18979 •