Published: 07/12/2007 Updated: 29/09/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The accept_connections function in the virtual private network daemon (vpnd) in Apple Mac OS X 10.5 prior to 10.5.4 allows remote malicious users to cause a denial of service (divide-by-zero error and daemon crash) via a crafted load balancing packet to UDP port 4112.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple mac os x 10.5.2
apple mac os x 10.5.3
apple mac os x server 10.5.2
apple mac os x server 10.5.3
apple mac os x server 10.5
apple mac os x server 10.5.1
apple mac os x 10.5
apple mac os x 10.5.1

/* vpnd-leopard-lb-dosc * * Copyright (c) 2007 by <mu-b@digit-labsorg> * * Apple MACOS X 1050 (leopard) vpnd remote DoS POC * by mu-b - Fri 9 Nov 2007 * * - Tested on: Apple MACOS X 1050 (leopard) vpnd * * Program received signal EXC_ARITHMETIC, Arithmetic exception * 0x00004828 in accept_connections () * * - Private Sou ...

CWE-189 http://www.securityfocus.com/bid/26699 http://www.securitytracker.com/id?1019052 http://secunia.com/advisories/27938 http://support.apple.com/kb/HT2163 http://secunia.com/advisories/30802 http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html http://www.vupen.com/english/advisories/2008/1981/references http://www.vupen.com/english/advisories/2007/4145 https://exchange.xforce.ibmcloud.com/vulnerabilities/38855 https://www.exploit-db.com/exploits/4690 https://nvd.nist.gov https://www.exploit-db.com/exploits/4690/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-6276

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect