>> Apple Mac OS X AirPort Multiple Remote Buffer and Integer Overflow Vulnerabilities
Title : Apple Mac OS X AirPort Multiple Remote Buffer and Integer Overflow Vulnerabilities VUPEN ID : VUPEN/ADV-2006-3737 CVE ID : CVE-2006-3507 - CVE-2006-3508 - CVE-2006-3509
Rated as : Critical
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2006-09-21
Technical Description
Multiple vulnerabilities have been identified in Apple Mac OS X, which could be exploited by remote attackers to compromise a vulnerable system or cause a denial of service.
The first issue is due to stack overflow errors in the AirPort wireless driver when handling malformed frames, which could be exploited by an attacker in local proximity to execute arbitrary commands with system privileges.
The second vulnerability is due to a heap overflow error in the AirPort wireless driver when processing scan cache updates, which could be exploited by an attacker in local proximity to cause a denial of service or compromise an affected system.
The third flaw is due to an integer overflow error in the Airport wireless driver's API for third-party wireless software, which could be exploited by an attacker in local proximity to execute arbitrary commands with the privileges of the user running a vulnerable application.
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
