CVE Vulnerabilities

CVE-2006-4392

Published: Oct 03, 2006 | Modified: Oct 17, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The Mach kernel, as used in operating systems including (1) Mac OS X 10.4 through 10.4.7 and (2) OpenStep before 4.2, allows local users to gain privileges via a parent process that forces an exception in a setuid child and uses Mach exception ports to modify the childs thread context and task address space in a way that causes the child to call a parent-controlled function.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple 10.4.3 10.4.3
Mac_os_x Apple 10.4.1 10.4.1
Mac_os_x Apple 10.4.7 10.4.7
Mac_os_x Apple 10.4.4 10.4.4
Openstep Next 4.1 4.1
Mac_os_x Apple 10.4 10.4
Mac_os_x Apple 10.4.6 10.4.6
Mac_os_x Apple 10.4.5 10.4.5
Mac_os_x Apple 10.4.2 10.4.2

References