Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-6173Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple MAC OS X

3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.3%
top 45.49%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apple MAC OS X
Timeline
PublishedNov 30
Latest updateMay 1

Description

Buffer overflow in the shared_region_make_private_np function in vm/vm_unix.c in Mac OS X 10.4.6 and earlier allows local users to execute arbitrary code via (1) a small range count, which causes insufficient memory allocation, or (2) a large number of ranges in the shared_region_make_private_np_args parameter.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDapple/mac_os_x10.4.6

🔴Vulnerability Details

1
GHSA
GHSA-j4xr-39pg-fhj5: Buffer overflow in the shared_region_make_private_np function in vm/vm_unix2022-05-01

💥Exploits & PoCs

1
Exploit-DB
Apple Mac OSX 10.4.x - 'Shared_Region_Make_Private_Np' Kernel Function Local Memory Corruption2006-11-29