Mac OS X mDNSResponder UPnP Internet Gateway Device (IGD) Packet Remote Overflow

2007-05-25T11:33:50
ID OSVDB:35142
Type osvdb
Reporter Michael Lynn(abaddon@io.com)
Modified 2007-05-25T11:33:50

Description

Vulnerability Description

A buffer overflow exists in Mac OS X. The mDNSResponder fails to validate UPnP packets used by the Internet Gateway Daemon resulting in a buffer overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch to address this vulnerability.

Short Description

A buffer overflow exists in Mac OS X. The mDNSResponder fails to validate UPnP packets used by the Internet Gateway Daemon resulting in a buffer overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1018123 Secunia Advisory ID:25402 Secunia Advisory ID:25745 Related OSVDB ID: 35141 Related OSVDB ID: 35143 Related OSVDB ID: 35145 Related OSVDB ID: 35147 Related OSVDB ID: 35146 Related OSVDB ID: 35144 News Article: http://www.eweek.com/article2/0,1895,2138304,00.asp Mail List Post: http://lists.apple.com/archives/security-announce/2007/May/msg00004.html ISS X-Force ID: 34493 FrSIRT Advisory: ADV-2007-1939 CVE-2007-2386 CERT VU: 221876 Bugtraq ID: 24144