Lucene search

K

[email protected]NVD:CVE-2007-4702

HistoryNov 15, 2007 - 8:46 p.m.

CVE-2007-4702

2007-11-1520:46:00

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.1 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

88.8%

The Application Firewall in Apple Mac OS X 10.5, when “Block all incoming connections” is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.

Affected configurations

NVD

Node

applemac_os_xMatch10.5

OR

applemac_os_x_serverMatch10.5

References

docs.info.apple.com/article.html?artnum=307004

lists.apple.com/archives/security-announce/2007/Nov/msg00004.html

secunia.com/advisories/27695

securitytracker.com/id?1018958

www.securityfocus.com/bid/26461

www.vupen.com/english/advisories/2007/3897

exchange.xforce.ibmcloud.com/vulnerabilities/38506

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.1 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

88.8%

Related for NVD:CVE-2007-4702

cve1 prion1 cvelist1 seebug1 nessus1 openvas2