Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-6799Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple MAC OS X

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents5 sources
Severity
4.7MEDIUMNVD
EPSS
0.6%
top 30.50%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apple MAC OS X
Timeline
PublishedNov 18
Latest updateMay 17

Description

Apple Mac OS X 10.9 allows local users to cause a denial of service (memory corruption or panic) by creating a hard link to a directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-0105.

CVSS vector

AV:L/AC:M/C:N/I:N/A:CExploitability: 3.4 | Impact: 6.9

Affected Packages1 packages

NVDapple/mac_os_x10.9

🔴Vulnerability Details

1
GHSA
GHSA-wghh-9cwm-cgm9: Apple Mac OS X 102022-05-17

💥Exploits & PoCs

2
Exploit-DB
Apple Mac OSX 10.11 - FTS Deep Structure of the FileSystem Buffer Overflow2015-12-09
Exploit-DB
Apple Mac OSX 10.9 - Hard Link Memory Corruption2014-04-08

📋Vendor Advisories

1
Red Hat
CVE-2013-6799: Apple Mac OS X 10

💬Community

1
Bugzilla
CVE kernel non-issue statements2010-05-13