Vulnerability Description
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh hash attribute in a TXT key.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Ichat | 3.1.6 |
| Apple | Instant Message Framework | 428 |
| Apple | Mac Os X | 10.4.8 |
References
- http://docs.info.apple.com/article.html?artnum=305102
- http://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html
- http://projects.info-pull.com/moab/MOAB-29-01-2007.htmlExploit
- http://secunia.com/advisories/23945
- http://secunia.com/advisories/24198
- http://www.osvdb.org/32713
- http://www.securityfocus.com/bid/22304Exploit
- http://www.securitytracker.com/id?1017661
- http://docs.info.apple.com/article.html?artnum=305102
- http://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html
- http://projects.info-pull.com/moab/MOAB-29-01-2007.htmlExploit
- http://secunia.com/advisories/23945
- http://secunia.com/advisories/24198
- http://www.osvdb.org/32713
- http://www.securityfocus.com/bid/22304Exploit
FAQ
What is CVE-2007-0614?
CVE-2007-0614 is a vulnerability with a CVSS score of 7.8 (HIGH). The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) v...
How severe is CVE-2007-0614?
CVE-2007-0614 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0614?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Ichat, Apple Instant Message Framework, Apple Mac Os X.