Vulnerability Note VU#367424
Apple Mac OS X fails to properly handle corrupted DMG image structures
Apple Mac OS X fails to properly handle corrupted DMG image structures. The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service.
A vulnerability in the way Mac OS X com.apple.AppleDiskImageController handles malformed DMG files could lead to a memory corruption.
We are aware of publicly available proof-of-concept code that demonstrates this vulnerability.
The complete impact of this vulnerability is unclear, but may include execution of arbitrary code or denial of service.
Disable Open “safe” files after downloading option
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Apple Computer, Inc.||Affected||21 Nov 2006||13 Mar 2007|
CVSS Metrics (Learn More)
This issue was reported in Month of Kernel Bugs MOKB-20-11-2006 by LMH.
This document was written by Chris Taschner.
- CVE IDs: CVE-2006-6061
- Date Public: 20 Nov 2006
- Date First Published: 22 Nov 2006
- Date Last Updated: 20 Mar 2007
- Severity Metric: 15.99
- Document Revision: 32
If you have feedback, comments, or additional information about this vulnerability, please send us email.