Want Your AD Below?

Need To Rent A Car

Rent a car today and get the best possible rates - Sponsored AD

Home
Blogs
Videos
- New Videos
- Most Popular
- Most Views
- Upload Video |

Health and Fitness

MOAB-17-01-2007: Apple SLP Daemon Service Registration Buffer Overflow Vulnerability

Published: January 18, 2007, 2:16 am

Tags: remote, privilege escalation, memory corruption

slpd is vulnerable to a buffer overflow condition when processing the attr-list field of a registration request, leading to an exploitable denial of service condition and potential arbitrary execution. It would allow unprivileged local (and possibly remote) users to execute arbitrary code under root privileges.For further information:Apple SLP Daemon Service Registration Buffer Overflow VulnerabilityProof of concept: MOAB-17-01-2007.rbThis issue was reported to Apple on 8/2/06 5:31 PM.

[ Full article ]

Blog link

Rating: 0

Comments

Leave a comment.

No Comments...

Related Videos
Related Posts
1. MOAB-26-01-2007: Apple Installer Package Filename Format String Vulnerability
  Apple Installer fails to properly handle package filename...
2. MOAB-24-01-2007: Apple Software Update Catalog Filename Format String Vulnerability
  Software Update fails to properly handle the filename...
3. MOAB-23-01-2007: Apple QuickDraw GetSrcBits32ARGB() Memory Corruption Vulnerability
  QuickDraw is integrated in Mac OS X since very...
4. MOAB-20-01-2007: Apple iChat aim:// URL Handler Format String Vulnerability
  Apple iChat AIM URI scheme handling is affected by a...
5. MOAB-17-01-2007: Apple SLP Daemon Service Registration Buffer Overflow Vulnerability
  slpd is vulnerable to a buffer overflow condition when...
6. MOAB-11-01-2007: Apple DMG UFS byte_swap_sbin() Integer Overflow Vulnerability
  The byte_swap_sbin() function, one of the UFS byte swapping...

2008 All Rights Reserved