[原文]** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-0975. Reason: This candidate is a duplicate of CVE-2005-0975. Notes: All CVE users should reference CVE-2005-0975 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
Apple Mac OS X Mach-O Loader parse_machfile() Function Overflow DoS
Local Access Required
Denial of Service,
Loss of Integrity,
Loss of Availability
A local overflow exists in Mac OS X. The parse_machfile() function declares nmcmds and offset variables as signed integers, but they are stored as unsigned when read from the file resulting in an integer overflow. With a specially crafted request, an attacker can cause a denial of service resulting in a loss of availability.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.