CVE-2007-4702 - The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, d

CVE-2007-4702

Summary

The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.

References

Vulnerable Configurations

cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 29-07-2017 - 01:33)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

apple	APPLE-SA-2007-11-15
bid	26461
confirm	http://docs.info.apple.com/article.html?artnum=307004
sectrack	1018958
secunia	27695
vupen	ADV-2007-3897
xf	macosx-appfw-connect-bypass(38506)

Last major update

29-07-2017 - 01:33

Published

15-11-2007 - 20:46

Last modified

29-07-2017 - 01:33