vendor:
MacOS/iOS
by:
ianbeer
7,8
CVSS
HIGH
Heap Overflow
119
CWE
Product Name: MacOS/iOS
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: MacOS 10.12.3 (16D32) on MacbookAir5,2
2017
MacOS/iOS kernel heap overflow in bpf
The bpf ioctl BIOCSBLEN allows userspace to set the bpf buffer length. If an interface is attached, the length cannot be changed. However, by creating and attaching to a bridge interface, the length can be changed and the buffer size will be out of sync with the actual allocated buffer size, leading to heap corruption when packets are received on the target interface.
Mitigation:
N/A
