Denial of Service Vulnerability in Apple Boot Camp by Apple
CVE-2014-1253

Currently unrated

Key Information:

Vendor: Apple
Status: Boot Camp
Vendor: CVE Published:; 14 February 2014

Summary

The Apple Boot Camp software for Windows running on Mac systems contains a vulnerability in the AppleMNT.sys driver that allows local users to manipulate a malformed header in a Portable Executable (PE) file. This can lead to denial of service through kernel memory corruption, potentially resulting in system instability or crashes. Users should ensure they are running the latest version of Apple Boot Camp to mitigate this security risk.

References

http://osvdb.org/103267

vdb-entryx_refsource_OSVDB

http://support.apple.com/kb/HT6126

x_refsource_CONFIRM

http://seclists.org/bugtraq/2014/Feb/47

vendor-advisoryx_refsource_APPLE

Timeline

Vulnerability published
Feb 14, 2014
Vulnerability Reserved
Jan 8, 2014