Sign-up

ID

VAR-200611-0487


CVE

CVE-2006-6061


TITLE

Apple Mac OS X fails to properly handle corrupted DMG image structures

Trust: 1.6

sources: CERT/CC: VU#367424 // CERT/CC: VU#367424

DESCRIPTION

com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. NOTE: the severity of this issue has been disputed by a third party, who states that the impact is limited to a denial of service (kernel panic) due to a vm_fault call with a non-aligned address. The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service. The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service. Service disruption (DoS) It may be in a state. Successfully exploiting this issue allows remote users to crash affected computers, denying service to legitimate users. Mac OS X version 10.4.8 is vulnerable to this issue; other versions may also be affected. Note: Further information from Alastair Houghton reports that this issue cannot be exploited to execute arbitrary code. See the references for details. This vulnerability is triggered if a user is tricked into loading a malicious DMG file, leading to arbitrary kernel mode code execution

Trust: 3.42

sources: NVD: CVE-2006-6061 // CERT/CC: VU#367424 // CERT/CC: VU#367424 // JVNDB: JVNDB-2006-000789 // BID: 21201 // VULHUB: VHN-22169

AFFECTED PRODUCTS

vendor:apple computermodel: - scope: - version: -

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:10.4.8

Trust: 1.6

vendor:applemodel:mac os x serverscope:eqversion:10.4.8

Trust: 1.6

vendor:applemodel:mac os xscope:eqversion:v10.3.9

Trust: 0.8

vendor:applemodel:mac os xscope:eqversion:v10.4.8

Trust: 0.8

vendor:applemodel:mac os x serverscope:eqversion:v10.3.9

Trust: 0.8

vendor:applemodel:mac os x serverscope:eqversion:v10.4.8

Trust: 0.8

vendor:applemodel:mac os serverscope:eqversion:x10.4.8

Trust: 0.3

vendor:applemodel:mac osscope:eqversion:x10.4.8

Trust: 0.3

vendor:applemodel:mac os serverscope:neversion:x10.4.9

Trust: 0.3

vendor:applemodel:mac osscope:neversion:x10.4.9

Trust: 0.3

sources: CERT/CC: VU#367424 // CERT/CC: VU#367424 // BID: 21201 // JVNDB: JVNDB-2006-000789 // CNNVD: CNNVD-200611-363 // NVD: CVE-2006-6061

CVSS

SEVERITY

CVSSV2

CVSSV3

CARNEGIE MELLON: VU#367424
value: 15.99

Trust: 1.6

nvd@nist.gov: CVE-2006-6061
value: HIGH

Trust: 1.0

NVD: CVE-2006-6061
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200611-363
value: CRITICAL

Trust: 0.6

VULHUB: VHN-22169
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2006-6061
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-22169
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CERT/CC: VU#367424 // CERT/CC: VU#367424 // VULHUB: VHN-22169 // JVNDB: JVNDB-2006-000789 // CNNVD: CNNVD-200611-363 // NVD: CVE-2006-6061

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-6061

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200611-363

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 21201 // CNNVD: CNNVD-200611-363

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2006-000789

PATCH
title:Security Update 2007-003 (10.3.9 Client)url:http://www.apple.com/support/downloads/securityupdate20070031039client.html
Trust: 0.8
title:Security Update 2007-003 (10.3.9 Server)url:http://www.apple.com/support/downloads/securityupdate20070031039server.html
Trust: 0.8
title:Security Update 2007-003url:http://docs.info.apple.com/article.html?artnum=305214-en
Trust: 0.8
title:Security Update 2007-003url:http://docs.info.apple.com/article.html?artnum=305214-ja
Trust: 0.8
title:Top Pageurl:http://www.apple.com/jp/
Trust: 0.8
title:Security Update 2007-003 (10.3.9 Client)url:http://www.apple.com/jp/ftp-info/reference/securityupdate20070031039client.html
Trust: 0.8
title:Security Update 2007-003 (10.3.9 Server)url:http://www.apple.com/jp/ftp-info/reference/securityupdate20070031039server.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2006-000789

EXTERNAL IDS
db:BIDid:21201
Trust: 4.4
db:NVDid:CVE-2006-6061
Trust: 4.4
db:CERT/CCid:VU#367424
Trust: 4.4
db:SECUNIAid:23012
Trust: 4.1
db:SECUNIAid:24479
Trust: 3.3
db:SECTRACKid:1017751
Trust: 3.3
db:SECTRACKid:1017260
Trust: 2.5
db:USCERTid:TA07-072A
Trust: 2.5
db:VUPENid:ADV-2006-4629
Trust: 1.7
db:VUPENid:ADV-2007-0930
Trust: 1.7
db:OSVDBid:30509
Trust: 1.7
db:XFid:30440
Trust: 1.4
db:USCERTid:SA07-072A
Trust: 0.8
db:JVNDBid:JVNDB-2006-000789
Trust: 0.8
db:CNNVDid:CNNVD-200611-363
Trust: 0.7
db:APPLEid:APPLE-SA-2007-03-13
Trust: 0.6
db:CERT/CCid:TA07-072A
Trust: 0.6
db:VULHUBid:VHN-22169
Trust: 0.1
sources:
            
            
            CERT/CC: VU#367424 // 
            
            
            
            CERT/CC: VU#367424 // 
            
            
            
            VULHUB: VHN-22169 // 
            
            
            
            BID: 21201 // 
            
            
            
            JVNDB: JVNDB-2006-000789 // 
            
            
            
            CNNVD: CNNVD-200611-363 // 
            
            
            
            NVD: CVE-2006-6061

REFERENCES
url:http://www.securityfocus.com/bid/21201
Trust: 4.1
url:http://projects.info-pull.com/mokb/mokb-20-11-2006.html
Trust: 3.3
url:http://docs.info.apple.com/article.html?artnum=305214
Trust: 3.3
url:http://www.kb.cert.org/vuls/id/367424
Trust: 2.8
url:http://www.us-cert.gov/cas/techalerts/ta07-072a.html
Trust: 2.5
url:http://secunia.com/advisories/23012/
Trust: 2.4
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-6061
Trust: 2.4
url:http://alastairs-place.net/2006/11/dmg-vulnerability/
Trust: 2.0
url:http://lists.apple.com/archives/security-announce/2007/mar/msg00002.html
Trust: 1.7
url:http://kernelfun.blogspot.com/2006/11/more-mokb-20-11-2006-related-news.html
Trust: 1.7
url:http://www.matasano.com/log/633/alastair-houghton-debunks-lmh-mokb-finding/
Trust: 1.7
url:http://www.osvdb.org/30509
Trust: 1.7
url:http://securitytracker.com/id?1017260
Trust: 1.7
url:http://www.securitytracker.com/id?1017751
Trust: 1.7
url:http://secunia.com/advisories/23012
Trust: 1.7
url:http://secunia.com/advisories/24479
Trust: 1.7
url:http://secunia.com/advisories/24479/
Trust: 1.6
url:http://securitytracker.com/alerts/2007/mar/1017751.html
Trust: 1.6
url:http://www.frsirt.com/english/advisories/2006/4629
Trust: 1.4
url:http://xforce.iss.net/xforce/xfdb/30440
Trust: 1.4
url:http://www.vupen.com/english/advisories/2006/4629
Trust: 1.1
url:http://www.vupen.com/english/advisories/2007/0930
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/30440
Trust: 1.1
url:http://jvn.jp/cert/jvnta07-072a/index.html
Trust: 0.8
url:http://jvn.jp/cert/jvnvu%23367424/index.html
Trust: 0.8
url:http://jvn.jp/tr/trta07-072a/index.html
Trust: 0.8
url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2006-6061
Trust: 0.8
url:http://securitytracker.com/alerts/2006/nov/1017260.html
Trust: 0.8
url:http://www.us-cert.gov/cas/alerts/sa07-072a.html
Trust: 0.8
url:http://www.frsirt.com/english/advisories/2007/0930
Trust: 0.6
url:http://www.info.apple.com/usen/security/security_updates.html
Trust: 0.3
url:http://www.apple.com/macosx/
Trust: 0.3
url:http://kernelfun.blogspot.com/2006/11/mokb-20-11-2006-mac-os-x-apple-udif.html
Trust: 0.3
sources:
            
            
            CERT/CC: VU#367424 // 
            
            
            
            CERT/CC: VU#367424 // 
            
            
            
            VULHUB: VHN-22169 // 
            
            
            
            BID: 21201 // 
            
            
            
            JVNDB: JVNDB-2006-000789 // 
            
            
            
            CNNVD: CNNVD-200611-363 // 
            
            
            
            NVD: CVE-2006-6061

CREDITS
LMH lmh@info-pull.com
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200611-363

SOURCES
db:CERT/CCid:VU#367424
db:CERT/CCid:VU#367424
db:VULHUBid:VHN-22169
db:BIDid:21201
db:JVNDBid:JVNDB-2006-000789
db:CNNVDid:CNNVD-200611-363
db:NVDid:CVE-2006-6061

LAST UPDATE DATE
2024-09-19T19:33:16.612000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#367424date:2007-03-20T00:00:00
db:CERT/CCid:VU#367424date:2007-03-20T00:00:00
db:VULHUBid:VHN-22169date:2017-07-20T00:00:00
db:BIDid:21201date:2007-03-15T03:34:00
db:JVNDBid:JVNDB-2006-000789date:2007-04-01T00:00:00
db:CNNVDid:CNNVD-200611-363date:2007-04-26T00:00:00
db:NVDid:CVE-2006-6061date:2017-07-20T01:34:10.790

SOURCES RELEASE DATE
db:CERT/CCid:VU#367424date:2006-11-22T00:00:00
db:CERT/CCid:VU#367424date:2006-11-22T00:00:00
db:VULHUBid:VHN-22169date:2006-11-22T00:00:00
db:BIDid:21201date:2006-11-20T00:00:00
db:JVNDBid:JVNDB-2006-000789date:2007-04-01T00:00:00
db:CNNVDid:CNNVD-200611-363date:2006-11-21T00:00:00
db:NVDid:CVE-2006-6061date:2006-11-22T01:07:00