CVE-2007-0299 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

7.1HIGHNVD

EPSS

3.0%

top 13.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedJan 17

Latest updateMay 1

Description

Integer overflow in the byte_swap_sbin function in bsd/ufs/ufs/ufs_byte_order.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service (kernel panic) by mounting a crafted Unix File System (UFS) DMG image, which triggers an invalid pointer dereference.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDapple/mac_os_x10.4.8

🔴Vulnerability Details

GHSA

GHSA-8gg5-gxpc-4xhv: Integer overflow in the byte_swap_sbin function in bsd/ufs/ufs/ufs_byte_order↗2022-05-01

▶