Vulnerabilities > CVE-2006-6127 - Local Denial of Service vulnerability in Apple Mac OS X KQueue
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Nessus
NASL family | MacOS X Local Security Checks |
NASL id | MACOSX_10_4_11.NASL |
description | The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.11 or a version of Mac OS X 10.3 which does not have Security Update 2007-008 applied. This update contains several security fixes for the following programs : - Flash Player Plugin - AppleRAID - BIND - bzip2 - CFFTP - CFNetwork - CoreFoundation - CoreText - Kerberos - Kernel - remote_cmds - Networking - NFS - NSURL - Safari - SecurityAgent - WebCore - WebKit |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 28212 |
published | 2007-11-14 |
reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/28212 |
title | Mac OS X < 10.4.11 Multiple Vulnerabilities (Security Update 2007-008) |
References
- http://docs.info.apple.com/article.html?artnum=307041
- http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
- http://projects.info-pull.com/mokb/MOKB-24-11-2006.html
- http://secunia.com/advisories/23114
- http://secunia.com/advisories/27643
- http://www.osvdb.org/30695
- http://www.securityfocus.com/bid/21285
- http://www.securityfocus.com/bid/26444
- http://www.us-cert.gov/cas/techalerts/TA07-319A.html
- http://www.vupen.com/english/advisories/2006/4715
- http://www.vupen.com/english/advisories/2007/3868
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30544