Vulnerability Details CVE-2006-3508
Heap-based buffer overflow in the AirPort wireless driver on Apple Mac OS X 10.4.7 allows physically proximate attackers to cause a denial of service (crash), gain privileges, and execute arbitrary code via a crafted frame that is not properly handled during scan cache updates.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.6%
CVSS Severity
CVSS v2 Score 7.2
References
- http://lists.apple.com/archives/Security-announce/2006/Sep/msg00001.html
- http://secunia.com/advisories/22068
- http://securitytracker.com/id?1016903
- http://www.kb.cert.org/vuls/id/589540
- http://www.securityfocus.com/bid/20144
- http://www.vupen.com/english/advisories/2006/3737
- http://lists.apple.com/archives/Security-announce/2006/Sep/msg00001.html
- http://secunia.com/advisories/22068
- http://securitytracker.com/id?1016903
- http://www.kb.cert.org/vuls/id/589540
- http://www.securityfocus.com/bid/20144
- http://www.vupen.com/english/advisories/2006/3737
Products affected by CVE-2006-3508
-
cpe:2.3:o:apple:mac_os_x:10.4.7
-
cpe:2.3:o:apple:mac_os_x_server:10.4.7