PT-2012-4963 · Apple · Macos X
Andy Davis
·
Publicado
2012-09-20
·
Atualizado
2017-08-29
·
CVE-2012-3723
CVSS v2.0
4.6
Média
| Vetor | AV:L/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Mac OS X versions prior to 10.7.5
Description
The issue arises from improper handling of the bNbrPorts field of a USB hub descriptor. This allows physically proximate attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and system crash, by attaching a USB device.
Recommendations
For versions prior to 10.7.5, update to version 10.7.5 or later to resolve the issue.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Macos X