CVE-2011-0182

Apple Mac OS X <10.6.7 - Privilege Escalation

Title source: llm

Description

The i386_set_ldt system call in the kernel in Apple Mac OS X before 10.6.7 does not properly handle call gates, which allows local users to gain privileges via vectors involving the creation of a call gate entry.

Exploits (1)

exploitdb WORKING POC

by hkpco · cdososx

https://www.exploit-db.com/exploits/17901

View Code ZIP pw:eip

References (3)

[Patch, Vendor Advisory] http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

[Patch, Vendor Advisory] http://support.apple.com/kb/HT4581

[Third Party Advisory] http://securityreason.com/securityalert/8402

Scores

EPSS 0.0061

EPSS Percentile 69.8%

Details

CWE

CWE-20

Status published

Products (14)

apple/mac_os_x 10.6.0

apple/mac_os_x 10.6.1

apple/mac_os_x 10.6.2

apple/mac_os_x 10.6.3

apple/mac_os_x 10.6.4

apple/mac_os_x 10.6.5

apple/mac_os_x < 10.6.6

apple/mac_os_x_server 10.6.0

apple/mac_os_x_server 10.6.1

apple/mac_os_x_server 10.6.2

... and 4 more

Published Mar 23, 2011

Tracked Since Feb 18, 2026