CVE-2006-4866

macOS - Local Buffer Overflow in kextload via Long Extension Argument

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4866. PoCs published by Adriel T. Desautels.

AI-analyzed exploit summary The provided text describes a buffer overflow vulnerability in Apple Mac OS X's kextload utility (CVE-2006-4866), which is not exploitable by itself due to lack of setuid privileges. It includes a trace example demonstrating the crash but does not contain functional exploit code.

Description

Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Adriel T. Desautels · textdososx
https://www.exploit-db.com/exploits/28578

The provided text describes a buffer overflow vulnerability in Apple Mac OS X's kextload utility (CVE-2006-4866), which is not exploitable by itself due to lack of setuid privileges. It includes a trace example demonstrating the crash but does not contain functional exploit code.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Apple Mac OS X kextload (prior to security update)
Auth required
Prerequisites: Local access · Another privileged process to manipulate kextload arguments
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/20034

Scores

EPSS 0.0092
EPSS Percentile 55.7%

Details

Status published
Products (50)
apple/mac_os_x 10.0
apple/mac_os_x 10.0.1
apple/mac_os_x 10.0.2
apple/mac_os_x 10.0.3
apple/mac_os_x 10.0.4
apple/mac_os_x 10.1
apple/mac_os_x 10.1.1
apple/mac_os_x 10.1.2
apple/mac_os_x 10.1.3
apple/mac_os_x 10.1.4
... and 40 more
Published Sep 19, 2006
Tracked Since Feb 18, 2026