CVE-2011-0180

Published: Mar 23, 2011Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows local users to read arbitrary (1) HFS, (2) HFS+, or (3) HFS+J files via a crafted F_READBOOTSTRAP ioctl call.

Affected (14)

Products: Apple: Mac Os X, Mac Os X Server

Apple

2 products

Mac Os X

Mac Os X Server

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Up to 10.6.6
Apple Mac Os X	Version 10.6.0
Apple Mac Os X	Version 10.6.1
Apple Mac Os X	Version 10.6.2
Apple Mac Os X	Version 10.6.3
Apple Mac Os X	Version 10.6.4
Apple Mac Os X	Version 10.6.5

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X Server	Up to 10.6.6
Apple Mac Os X Server	Version 10.6.0
Apple Mac Os X Server	Version 10.6.1
Apple Mac Os X Server	Version 10.6.2
Apple Mac Os X Server	Version 10.6.3
Apple Mac Os X Server	Version 10.6.4
Apple Mac Os X Server	Version 10.6.5

Related CWEs

CWE-189

References (4)

http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

Source: product-security@apple.com

PatchVendor Advisory

http://support.apple.com/kb/HT4581

Source: product-security@apple.com

PatchVendor Advisory

http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://support.apple.com/kb/HT4581

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.