A specially crafted HFS+ filesystem in a DMG image can cause the do_hfs_truncate() function to panic the kernel (denial of service), when attempting to remove a file from the mounted filesystem. This issue can't lead to arbitrary code execution, although there's a significant risk of local HFS+ filesystems corruption.Further information:
- MOAB-13-01-2007
- Proof of concept image: MOAB-13-01-2007.dmg.gz
No comments:
Post a Comment