A buffer overflow vulnerability in the Apple Mac OS X bootp daemon may allow an attacker to execute arbitrary code on an affected system.
The bootp daemon (bootpd) is used to send clients network and IP address configuration settings. It can also work in combination with a TFTP server to transfer an operating system image to diskless clients.
An attacker may be able to execute arbitrary code with root privileges on the affected system.
Thanks to Apple Product Security for reporting this vulnerability.
This document was written by Ryan Giobbi.
|Date First Published:||2006-08-02|
|Date Last Updated:||2006-08-03 12:52 UTC|