Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3498

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-3498
Last Modified 07 Mar 2011 09:38:45
Published 02 Aug 2006 12:04:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3498

Summary

Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute arbitrary code via a crafted BOOTP request.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.3.9

  • Apple Mac Os X 10.4.7

  • Apple Mac Os X Server 10.3.9

  • Apple Mac Os X Server 10.4.7


References

CERT-VN - VU#776628

CERT - TA06-214A

XF - macosx-bootp-bo(28139)

VUPEN - ADV-2006-3101

BID - 19289

OSVDB - 27736

SECUNIA - 21253

APPLE - APPLE-SA-2006-08-01

Related Patches

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (PPC)

Apple 2006-08-01 Security Update 2006-004 Mac OS X 10.4.7 Client (Intel)


Last Updated: 27 May 2016 10:43:02