Back to search
CVE-2007-0229
Published: Jan 13, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to CVE-2006-5679. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://projects.info-pull.com/moab/MOAB-10-01-2007.html
x_refsource_MISC
TA07-072A
third-party-advisory
x_refsource_CERT
32684
vdb-entry
x_refsource_OSVDB
[freebsd-security] 20070114 MOAB advisories
mailing-list
x_refsource_MLIST
ADV-2007-0141
vdb-entry
x_refsource_VUPEN
APPLE-SA-2007-03-13
vendor-advisory
x_refsource_APPLE
http://docs.info.apple.com/article.html?artnum=305214
x_refsource_CONFIRM
1017751
vdb-entry
x_refsource_SECTRACK
21993
vdb-entry
x_refsource_BID
macos-ffsmountfs-bo(31409)
vdb-entry
x_refsource_XF
23703
third-party-advisory
x_refsource_SECUNIA
ADV-2007-0930
vdb-entry
x_refsource_VUPEN
24479
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now