Vulnerability Description
Integer overflow in the mach_msg_send function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which leads to a heap-based buffer overflow.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.0 |
| Apple | Mac Os X Server | 10.0 |
References
- http://www.felinemenace.org/~nemo/Exploit
- http://www.osvdb.org/28453
- http://www.securityfocus.com/bid/17056
- http://www.felinemenace.org/~nemo/Exploit
- http://www.osvdb.org/28453
- http://www.securityfocus.com/bid/17056
FAQ
What is CVE-2006-1220?
CVE-2006-1220 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Integer overflow in the mach_msg_send function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which lea...
How severe is CVE-2006-1220?
CVE-2006-1220 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1220?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Apple Mac Os X Server.