Overview
The Apple Mac OS X PPP driver fails to properly handle PPPoE Active Discovery Initiation (PADI) packets. This vulnerability may allow a remote attacker to execute arbitrary code with system privileges.
Description
The Apple Mac OS X PPP driver fails to properly handle PADI packets allowing a buffer overflow to occur. An attacker on a local network may be able to trigger the overflow by sending a specially crafted packet to a vulnerable system that has PPPoE enabled. Note Apple states that PPPoE functionality is disabled by default. |
Impact
This vulnerability may allow a remote attacker to execute arbitrary code with system privileges. |
Solution
Apply Apple Updates |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported in Apple Security Update 2006-007. Apple credits Mu Security with reporting this vulnerability.
This document was written by Jeff Gennari based on information from Apple and Mu Security.
Other Information
| CVE IDs: | CVE-2006-4406 |
| Severity Metric: | 13.23 |
| Date Public: | 2006-11-28 |
| Date First Published: | 2006-11-29 |
| Date Last Updated: | 2006-11-30 16:26 UTC |
| Document Revision: | 17 |