Denial of Service Vulnerability in Apple Mac OS X Kernel

Denial of Service Vulnerability in Apple Mac OS X Kernel

CVE-2013-5172 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service (panic) by triggering a digest operation, as demonstrated by an IPSec connection.

Learn more about our Web Application Penetration Testing UK.