CVE-2006-6061 - CVE Reference - Advisories

CVE Reference: CVE-2006-6061

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-6061

Description: com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. NOTE: the severity of this issue has been disputed by a third party, who states that the impact is limited to a denial of service (kernel panic) due to a vm_fault call with a non-aligned address.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30440 ST 1017260 1017751 SAID Secunia Advisory: SA23012 Secunia Advisory: SA24479 OSVDB 30509 MISC http://alastairs-place.net/2006/11/dmg-vulnerability/ http://www.matasano.com/log/633/alastair-houghton-debunks-lmh-mokb-finding/ http://kernelfun.blogspot.com/2006/11/more-mokb-20-11-2006-related-news.html http://projects.info-pull.com/mokb/MOKB-20-11-2006.html CONFIRM http://docs.info.apple.com/article.html?artnum=305214 CERT-VN 367424 CERT http://www.us-cert.gov/cas/techalerts/TA07-072A.html BID 21201 APPLE http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Linux Kernel LDT Buffer Size Handling Vulnerability

2.	OpenBSD BIND Query Port DNS Cache Poisoning

3.	Drupal Session Fixation Vulnerability

4.	Red Hat update for thunderbird

5.	Apple Safari Cross-Domain Cookie Injection Vulnerability

6.	Red Hat update for kernel

7.	Slackware update for dnsmasq

8.	IPCop update for perl

9.	Ubuntu update for php

10.	dnsmasq Denial of Service and DNS Cache Poisoning