Lucene search

PRIOn knowledge basePRION:CVE-2007-0613

HistoryJan 31, 2007 - 11:28 a.m.

Design/Logic Flaw

2007-01-3111:28:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON

The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.

CPENameOperatorVersion
ichateq3.1.6
instant_message_frameworkeq428

CPE	Name	Operator	Version
	ichat	eq	3.1.6
	instant_message_framework	eq	428

References

projects.info-pull.com/moab/MOAB-29-01-2007.html

www.osvdb.org/32698

www.osvdb.org/32699

www.securityfocus.com/bid/22304

6.5 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.016 Low

EPSS

Percentile

87.1%

JSON

Related for PRION:CVE-2007-0613