4 matches found
iDefense Security Advisory 08.07.07: Apple Mac OS X mDNSResponder HTTP Request Heap Overflow Vulnerability
Apple Mac OS X mDNSResponder HTTP Request Heap Overflow Vulnerability iDefense Security Advisory 08.07.07 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 07, 2007 I. BACKGROUND mDNSResponder is part of the Bonjour suite of applications. Bonjour is used to provide automatic and...
Immunity Canvas: MU
Name| mu ---|--- CVE| CVE-2007-3744 Exploit Pack| CANVAS Description| MacOS X 10.4 mDNSResponder UPNP Remote Root Exploit Notes| CVE Name: CVE-2007-3744 Notes: If the target port is not specified, it will be located automatically. This exploit will attempt to bypass the built-in OS X firewall by...
CVE-2007-3744
CVE-2007-3744 affects Apple macOS X 10.4.10 (up to build 20070731) via a heap-based overflow in mDNSResponder’s UPnP IGD functionality. The issue arises in the Legacy NAT Traversal code when processing malformed HTTP requests, allowing a network-adjacent remote attacker to execute code with root ...
Mac OS X Multiple Vulnerabilities (Security Update 2007-007)
The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP -...