CVE-2006-1985

Apple Safari - Memory Corruption

Title source: rule
STIX 2.1

Description

Heap-based buffer overflow in BOM BOMArchiveHelper 10.4 (6.3) Build 312, as used in Mac OS X 10.4.6 and earlier, allows user-assisted attackers to execute arbitrary code via a crafted archive (such as ZIP) that contains long path names, which triggers an error in the BOMStackPop function.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Tom Ferris · textdososx
https://www.exploit-db.com/exploits/27715

References (13)

Core 13
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17951
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/24819
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1779
Patch, Vendor Advisory x_refsource_misc
http://www.security-protocols.com/sp-x25-advisory.php
Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA06-132A.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1016082
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25945
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/1452
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17634
Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/20077
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/19686

Scores

EPSS 0.2217
EPSS Percentile 95.8%

Details

CWE
CWE-119
Status published
Products (38)
apple/mac_os_x 10.3
apple/mac_os_x 10.3.1
apple/mac_os_x 10.3.2
apple/mac_os_x 10.3.3
apple/mac_os_x 10.3.4
apple/mac_os_x 10.3.5
apple/mac_os_x 10.3.6
apple/mac_os_x 10.3.7
apple/mac_os_x 10.3.8
apple/mac_os_x 10.3.9
... and 28 more
Published Apr 21, 2006
Tracked Since Feb 18, 2026