Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not properly validate the data for file actions and port actions, which allows local users to (1) cause a denial of service (panic) via a size value that is inconsistent with a header count field, or (2) obtain sensitive information from kernel heap memory via a certain size value in conjunction with a crafted buffer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple Mac OS X XNU内核posix_spawn系统调用拒绝服务漏洞
Vulnerability Description
Apple Mac OS X是美国苹果(Apple)公司为Mac计算机所开发的一套专用操作系统。 Apple Mac OS X 10.8.x版本中的XNU内核中的posix_spawn系统调用中存在漏洞,该漏洞源于程序没有正确验证文件操作和端口操作的数据。本地攻击者可通过大小与头计数字段不一致的值,利用该漏洞造成拒绝服务(恐慌)或可通过一定大小的值连同特征的缓冲区利用该漏洞从内核堆内存中获得敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A