The i386_set_ldt system call in the kernel in Apple Mac OS X before 10.6.7 does not properly handle call gates, which allows local users to gain privileges via vectors involving the creation of a call gate entry.
2011-03-23T02:00:05.393
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | apple | mac_os_x | ≤ 10.6.6 | Yes |
| Operating System | apple | mac_os_x | 10.6.0 | Yes |
| Operating System | apple | mac_os_x | 10.6.1 | Yes |
| Operating System | apple | mac_os_x | 10.6.2 | Yes |
| Operating System | apple | mac_os_x | 10.6.3 | Yes |
| Operating System | apple | mac_os_x | 10.6.4 | Yes |
| Operating System | apple | mac_os_x | 10.6.5 | Yes |
| Operating System | apple | mac_os_x_server | ≤ 10.6.6 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.0 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.1 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.2 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.3 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.4 | Yes |
| Operating System | apple | mac_os_x_server | 10.6.5 | Yes |