CVE-2009-1236

Name of the Vulnerable Software and Affected Versions XNU versions 1228.3.13 and earlier Mac OS X versions 10.5.6 and earlier

Description A heap-based buffer overflow issue exists in the AppleTalk networking stack, allowing remote attackers to cause a denial of service, resulting in a system crash. This is achieved by sending a ZIP NOTIFY packet that overwrites a certain ifPort structure member.

Recommendations For XNU versions 1228.3.13 and earlier, consider disabling the AppleTalk networking stack as a temporary workaround until a patch is available. For Mac OS X versions 10.5.6 and earlier, restrict access to the AppleTalk networking stack to minimize the risk of exploitation.