Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0975

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2005-0975
Last Modified 07 Mar 2011 09:20:54
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0975

Summary

Integer signedness error in the parse_machfile function in the mach-o loader (mach_loader.c) for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service (CPU consumption) via a crafted mach-o header.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.3

  • Apple Mac Os X 10.3.1

  • Apple Mac Os X 10.3.2

  • Apple Mac Os X 10.3.3

  • Apple Mac Os X 10.3.4

  • Apple Mac Os X 10.3.5

  • Apple Mac Os X 10.3.6

  • Apple Mac Os X Server 10.3

  • Apple Mac Os X Server 10.3.1

  • Apple Mac Os X Server 10.3.2

  • Apple Mac Os X Server 10.3.3

  • Apple Mac Os X Server 10.3.4

  • Apple Mac Os X Server 10.3.5

  • Apple Mac Os X Server 10.3.6

  • Apple Mac Os X Server 10.3.7

  • Opendarwin Darwin Kernel 7.1


References

SECTRACK - 1013735

SECUNIA - 13902

XF - macos-machloader-dos(18979)

VUPEN - ADV-2005-0041

BID - 12314

CIAC - P-185

SECTRACK - 1012941

BUGTRAQ - 20050119 Darwin Kernel Vulnerability

APPLE - APPLE-SA-2005-04-15

MISC - http://felinemenace.org/advisories/macosx.txt


Last Updated: 27 May 2016 10:40:00