PT-2009-3778 · Apple · Xnu+1
Mu-B
·
Published
2009-04-02
·
Updated
2017-09-29
·
CVE-2009-1235
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
XNU versions 1228.9.59 and earlier on Apple Mac OS X versions 10.5.6 and earlier
Description
The issue allows local users to overwrite kernel memory and gain privileges by attaching an HFS+ disk image and performing certain steps involving
HFS GET BOOT INFO fcntl calls, due to improper restriction of interaction between user space and the HFS IOCTL handler.Recommendations
For XNU versions 1228.9.59 and earlier on Apple Mac OS X versions 10.5.6 and earlier, consider restricting access to the HFS IOCTL handler as a temporary workaround until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Macos X
Xnu