CVE-2006-3509 : Integer overflow in the API for the AirPort wireless driver on Apple Mac OS X 10

Integer overflow in the API for the AirPort wireless driver on Apple Mac OS X 10.4.7 might allow physically proximate attackers to cause a denial of service (crash) or execute arbitrary code in third-party wireless software that uses the API via crafted frames.

Published 2006-09-21 21:07:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2006-3509

Apple » Mac Os X » Version: 10.4.7
cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
Matching versions
Apple » Mac Os X Server » Version: 10.4.7
cpe:2.3:o:apple:mac_os_x_server:10.4.7:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-3509

EPSS FAQ

0.15%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 37 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-3509

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2006-3509

Jump to

Vulnerability Details : CVE-2006-3509

Products affected by CVE-2006-3509

Exploit prediction scoring system (EPSS) score for CVE-2006-3509

CVSS scores for CVE-2006-3509

References for CVE-2006-3509