Published: 03/08/2007 Updated: 29/07/2017

CVSS v2 Base Score: 5.8 | Impact Score: 6.4 | Exploitability Score: 6.5

VMScore: 516

Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P

Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in mDNSResponder on Apple Mac OS X 10.4.10 prior to 20070731 allows network-adjacent remote malicious users to execute arbitrary code via a crafted packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x 10.4
apple mac os x 10.4.7
apple mac os x 10.4.8
apple mac os x server 10.4.4
apple mac os x server 10.4.5
apple mac os x 10.4.5
apple mac os x 10.4.6
apple mac os x server 10.4.2
apple mac os x server 10.4.3
apple mac os x 10.4.1
apple mac os x 10.4.10
apple mac os x 10.4.9
apple mac os x server 10.4
apple mac os x server 10.4.6
apple mac os x server 10.4.7
apple mac os x 10.4.2
apple mac os x 10.4.3
apple mac os x 10.4.4
apple mac os x server 10.4.1
apple mac os x server 10.4.10
apple mac os x server 10.4.8
apple mac os x server 10.4.9

Worm threat forces Apple to disable software?

The Register • SÃ»nnet Beskerming • 02 Aug 2007

Disables support for gateway device

When an online identity (group of identities) known as InfoSec Sellout made grand claims of a proof of concept worm, dubbed Rape.osx, that targets OS X, it led to a lot of heated argument and drama - including anonymous death threats and an accidental deletion of their blog. While there has still been no external proof of their claims, or appearance of the worm outside of their testing environment, the information that accompanied the original claims pointed to a vulnerability in mDNSResponder a...

CVE-2007-3744

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect