ID
VAR-200505-0526
CVE
CVE-2005-0969
TITLE
Apple Mac OS X Kernel Syscall Emulation Buffer Overflow Vulnerability
Trust: 0.9
DESCRIPTION
Heap-based buffer overflow in the syscall emulation functionality in Mac OS X before 10.3.9 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via crafted parameters. A heap-based buffer overflow vulnerability affects Apple Mac OS X. This issue is due to a failure of the application to securely manage user-supplied data when copying it into sensitive memory space while managing syscall emulation functionality. An attacker may leverage this issue to cause a denial of service condition and potentially execute code with kernel level privileges. It should be noted that this issue was previously reported in BID 13203 (Apple Mac OS X Kernel Multiple Local Privilege Escalation And Denial Of Service Vulnerabilities); it has been assigned its own BID
Trust: 1.26
AFFECTED PRODUCTS
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.6 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.7 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.4 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.3 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.1 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.2 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.8 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.5 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3.8 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.3 | Trust: 1.6 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.0.3 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1.4 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.6 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.5 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.2 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1.5 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.7 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1.2 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.0.4 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.0.2 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.0.1 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.0 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1.1 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.1 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.1.3 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.4 | Trust: 1.0 |
| vendor: | apple | model: | mac os x | scope: | eq | version: | 10.2.3 | Trust: 1.0 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.8 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.0.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.8 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.0.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.7 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.8 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.7 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.6 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.0 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.4 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.6 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.6 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.0 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.6 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | ne | version: | x10.3.9 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.1.5 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | ne | version: | x10.3.9 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.7 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.2.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.7 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.0.2 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.3.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.0.3 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.03 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.3.8 | Trust: 0.3 |
| vendor: | apple | model: | mac os server | scope: | eq | version: | x10.2.1 | Trust: 0.3 |
| vendor: | apple | model: | mac os | scope: | eq | version: | x10.1 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-Other | Trust: 1.0 |
THREAT TYPE
local
Trust: 0.9
TYPE
buffer overflow
Trust: 0.6
EXTERNAL IDS
| db: | NVD | id: | CVE-2005-0969 | Trust: 2.0 |
| db: | CNNVD | id: | CNNVD-200505-1000 | Trust: 0.7 |
| db: | APPLE | id: | APPLE-SA-2005-04-15 | Trust: 0.6 |
| db: | BID | id: | 13207 | Trust: 0.4 |
| db: | VULHUB | id: | VHN-12178 | Trust: 0.1 |
REFERENCES
| url: | http://lists.apple.com/archives/security-announce/2005/apr/msg00000.html | Trust: 1.7 |
| url: | http://www.apple.com/macosx/ | Trust: 0.3 |
CREDITS
Dino Dai Zovi is credited with the discovery of this issue.
Trust: 0.9
SOURCES
| db: | VULHUB | id: | VHN-12178 |
| db: | BID | id: | 13207 |
| db: | CNNVD | id: | CNNVD-200505-1000 |
| db: | NVD | id: | CVE-2005-0969 |
LAST UPDATE DATE
2024-08-14T13:40:13.042000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-12178 | date: | 2008-09-05T00:00:00 |
| db: | BID | id: | 13207 | date: | 2009-07-12T12:56:00 |
| db: | CNNVD | id: | CNNVD-200505-1000 | date: | 2005-10-20T00:00:00 |
| db: | NVD | id: | CVE-2005-0969 | date: | 2008-09-05T20:47:49.550 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-12178 | date: | 2005-05-12T00:00:00 |
| db: | BID | id: | 13207 | date: | 2005-04-16T00:00:00 |
| db: | CNNVD | id: | CNNVD-200505-1000 | date: | 2005-05-12T00:00:00 |
| db: | NVD | id: | CVE-2005-0969 | date: | 2005-05-12T04:00:00 |