In association with heise online

27 November 2006, 20:32

Several vulnerabilities in Mac OS X

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

LMH, the initiator of the Month of Kernel Bugs is reporting two vulnerabilities in the Mac OS X kernel. Local users of Intel Macs can exploit one of them to expand their rights. Another vulnerability in the Mac OS X, related to the loading of Mach-O binaries, can lead to memory corruption. LMH claims the error can be replicated even on Mac OS X systems with all current patches installed.

The error occurs when Mach O binary files with correct mach_header structures, but deformed load_command data structures, are loaded. This can only be exploited by local users, although LMH did not indicate the severity of the hole. On a different note, specially prepared universal binaries can be used to provoke an integer overflow in the fatfile_getarch2() function. Attackers can potentially use this to execute arbitrary program code in the kernel mode.

As yet, Apple haven't released updates to close the security holes. Although, in the past, Apple users haven't had to be as careful, they should now take the same precautions as Windows users when downloading executable files from peer-to-peer sites, or questionable websites.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit