CVE-2006-4866

Published: Sep 19, 2006Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.

Affected (72)

Products: Apple: Mac Os X, Mac Os X Server

Apple

2 products

Mac Os X

Mac Os X Server

Configuration A

72 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Version 10.0.1
Apple Mac Os X	Version 10.0.2
Apple Mac Os X	Version 10.0.3
Apple Mac Os X	Version 10.0.4
Apple Mac Os X	Version 10.0
Apple Mac Os X	Version 10.1.1
Apple Mac Os X	Version 10.1.2
Apple Mac Os X	Version 10.1.3
Apple Mac Os X	Version 10.1.4
Apple Mac Os X	Version 10.1.5
Apple Mac Os X	Version 10.1
Apple Mac Os X	Version 10.2.1
Apple Mac Os X	Version 10.2.2
Apple Mac Os X	Version 10.2.3
Apple Mac Os X	Version 10.2.4
Apple Mac Os X	Version 10.2.5
Apple Mac Os X	Version 10.2.6
Apple Mac Os X	Version 10.2.7
Apple Mac Os X	Version 10.2.8
Apple Mac Os X	Version 10.2
Apple Mac Os X	Version 10.3.1
Apple Mac Os X	Version 10.3.2
Apple Mac Os X	Version 10.3.3
Apple Mac Os X	Version 10.3.4
Apple Mac Os X	Version 10.3.5
Apple Mac Os X	Version 10.3.6
Apple Mac Os X	Version 10.3.7
Apple Mac Os X	Version 10.3.8
Apple Mac Os X	Version 10.3.9
Apple Mac Os X	Version 10.3
Apple Mac Os X	Version 10.4.1
Apple Mac Os X	Version 10.4.2
Apple Mac Os X	Version 10.4.3
Apple Mac Os X	Version 10.4.4
Apple Mac Os X	Version 10.4.5
Apple Mac Os X	Version 10.4.6
Apple Mac Os X	Version 10.4.7
Apple Mac Os X	Version 10.4
Apple Mac Os X Server	Version 10.0
Apple Mac Os X Server	Version 10.1.1
Apple Mac Os X Server	Version 10.1.2
Apple Mac Os X Server	Version 10.1.3
Apple Mac Os X Server	Version 10.1.4
Apple Mac Os X Server	Version 10.1.5
Apple Mac Os X Server	Version 10.1
Apple Mac Os X Server	Version 10.2.1
Apple Mac Os X Server	Version 10.2.2
Apple Mac Os X Server	Version 10.2.3
Apple Mac Os X Server	Version 10.2.4
Apple Mac Os X Server	Version 10.2.5
Apple Mac Os X Server	Version 10.2.6
Apple Mac Os X Server	Version 10.2.7
Apple Mac Os X Server	Version 10.2.8
Apple Mac Os X Server	Version 10.2
Apple Mac Os X Server	Version 10.3.1
Apple Mac Os X Server	Version 10.3.2
Apple Mac Os X Server	Version 10.3.3
Apple Mac Os X Server	Version 10.3.4
Apple Mac Os X Server	Version 10.3.5
Apple Mac Os X Server	Version 10.3.6
Apple Mac Os X Server	Version 10.3.7
Apple Mac Os X Server	Version 10.3.8
Apple Mac Os X Server	Version 10.3.9
Apple Mac Os X Server	Version 10.3
Apple Mac Os X Server	Version 10.4.1
Apple Mac Os X Server	Version 10.4.2
Apple Mac Os X Server	Version 10.4.3
Apple Mac Os X Server	Version 10.4.4
Apple Mac Os X Server	Version 10.4.5
Apple Mac Os X Server	Version 10.4.6
Apple Mac Os X Server	Version 10.4.7
Apple Mac Os X Server	Version 10.4

References (6)

http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049452.html

Source: cve@mitre.org

http://www.netragard.com/pdfs/research/apple-kext-tools-20060822.txt

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/20034

Source: cve@mitre.org

http://lists.grok.org.uk/pipermail/full-disclosure/2006-September/049452.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.netragard.com/pdfs/research/apple-kext-tools-20060822.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/20034

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.