CVE-2006-6127 - Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent

CVE-2006-6127

Summary

Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent.

References

Vulnerable Configurations

cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.4.8:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 29-07-2017 - 01:29)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

apple	APPLE-SA-2007-11-14
bid	21285 26444
cert	TA07-319A
confirm	http://docs.info.apple.com/article.html?artnum=307041
misc	http://projects.info-pull.com/mokb/MOKB-24-11-2006.html
osvdb	30695
secunia	23114 27643
vupen	ADV-2006-4715 ADV-2007-3868
xf	macosx-kqueue-dos(30544)

Last major update

29-07-2017 - 01:29

Published

27-11-2006 - 00:07

Last modified

29-07-2017 - 01:29