Vulnerabilities > CVE-2009-1237 - Resource Management Errors vulnerability in Apple mac OS X and mac OS X Server

047910
CVSS 4.9 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
COMPLETE
local
low complexity
apple
CWE-399
exploit available
NVD
Published: 2009-04-02
Updated: 2017-09-29

Summary

Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.

Vulnerable Configurations

Part Description Count
OS
Apple
120

Common Weakness Enumeration (CWE)

Exploit-Db

  • descriptionMac OS X xnu <= 1228.3.13 (macfsstat) Local Kernel Memory Leak/DoS. CVE-2009-1237. Dos exploit for osx platform
    fileexploits/osx/dos/8263.c
    idEDB-ID:8263
    last seen2016-02-01
    modified2009-03-23
    platformosx
    port
    published2009-03-23
    reportermu-b
    sourcehttps://www.exploit-db.com/download/8263/
    titleMac OS X xnu <= 1228.3.13 macfsstat Local Kernel Memory Leak/DoS
    typedos
  • descriptionMac OS X xnu <= 1228.3.13 (profil) Kernel Memory Leak/DoS PoC. CVE-2009-1237. Dos exploit for osx platform
    fileexploits/osx/dos/8264.c
    idEDB-ID:8264
    last seen2016-02-01
    modified2009-03-23
    platformosx
    port
    published2009-03-23
    reportermu-b
    sourcehttps://www.exploit-db.com/download/8264/
    titleMac OS X xnu <= 1228.3.13 profil Kernel Memory Leak/DoS PoC
    typedos

References