CVE-2006-6130

Apple Mac OS X - Denial of Service via AIOCREGLOCALZN ioctl Command

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6130. PoCs published by LMH.

AI-analyzed exploit summary This exploit targets a local memory corruption vulnerability in Mac OS X's AppleTalk stack via a crafted IOCTL call. It attempts to trigger a kernel panic or potential arbitrary code execution by passing a buffer filled with controlled values to the vulnerable IOCTL handler.

Description

Apple Mac OS X AppleTalk allows local users to cause a denial of service (kernel panic) by calling the AIOCREGLOCALZN ioctl command with a crafted data structure on an AppleTalk socket.

Exploits (1)

exploitdb WORKING POC VERIFIED

by LMH · clocalosx

https://www.exploit-db.com/exploits/29194

View Code ZIP pw:eip

This exploit targets a local memory corruption vulnerability in Mac OS X's AppleTalk stack via a crafted IOCTL call. It attempts to trigger a kernel panic or potential arbitrary code execution by passing a buffer filled with controlled values to the vulnerable IOCTL handler.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: Apple Mac OS X 10.4.8 (and potentially other versions)

No auth needed

Prerequisites: AppleTalk stack must be enabled on the target system

MITRE ATT&CK