Vulnerability Details : CVE-2006-5836
Potential exploit
The fpathconf syscall function in bsd/kern/kern_descrip.c in the Darwin kernel (XNU) 8.8.1 in Apple Mac OS X allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via a file descriptor with an unrecognized file type.
Vulnerability category: Execute codeDenial of service
Products affected by CVE-2006-5836
- cpe:2.3:o:opendarwin:darwin_kernel:8.8.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-5836
0.29%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 52 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-5836
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-2006-5836
-
http://docs.info.apple.com/article.html?artnum=305214
-
http://secunia.com/advisories/22808
-
http://secunia.com/advisories/24479
About Secunia Research | Flexera
-
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
Page Not Found | CISAUS Government Resource
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/30152
-
http://projects.info-pull.com/mokb/MOKB-09-11-2006.html
Exploit;Vendor Advisory
-
http://www.vupen.com/english/advisories/2006/4448
Site en construction
-
http://www.securityfocus.com/bid/20982
Exploit
-
http://www.securitytracker.com/id?1017751
-
http://www.vupen.com/english/advisories/2007/0930
Webmail: access your OVH emails on ovhcloud.com | OVHcloud
-
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
-
http://www.osvdb.org/30216
Jump to