Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-6062 — Out-of-bounds Write in Apple MAC OS X

4 documents3 sources

Severity

5.1MEDIUMNVD

EPSS

24.3%

top 3.89%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedNov 22

Latest updateMay 1

Description

Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages2 packages

▶NVDapple/mac_os_x10.4.8

▶NVDapple/mac_os_x_server10.4.8

🔴Vulnerability Details

GHSA

GHSA-gmw5-xwrw-m2rh: Unspecified vulnerability in Apple Mac OS X 10↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

Apple Mac OSX 10.4.8 - UDTO Disk Image Remote Denial of Service↗2006-11-21

▶

Exploit-DB

Apple Mac OSX 10.4.8 - UDIF Disk Image Remote Denial of Service↗2006-11-20

▶