CVE-2006-6173

Name of the Vulnerable Software and Affected Versions Mac OS X versions prior to 10.4.6

Description A buffer overflow issue exists in the shared region make private np function, located in vm/vm unix.c. This issue allows local users to execute arbitrary code through two possible methods: (1) by using a small range count, which results in insufficient memory allocation, or (2) by specifying a large number of ranges in the shared region make private np args parameter.

Recommendations For Mac OS X versions prior to 10.4.6, update to a version later than 10.4.6 to resolve the issue. As a temporary workaround, consider restricting access to the shared region make private np function to minimize the risk of exploitation.