ID CVE-2007-6276
Summary The accept_connections function in the virtual private network daemon (vpnd) in Apple Mac OS X 10.5 before 10.5.4 allows remote attackers to cause a denial of service (divide-by-zero error and daemon crash) via a crafted load balancing packet to UDP port 4112.
References
Vulnerable Configurations
  • Apple Mac OS X 10.5
    cpe:2.3:o:apple:mac_os_x:10.5
  • Apple Mac OS X 10.5.1
    cpe:2.3:o:apple:mac_os_x:10.5.1
  • Apple Mac OS X 10.5.2
    cpe:2.3:o:apple:mac_os_x:10.5.2
  • Apple Mac OS X 10.5.3
    cpe:2.3:o:apple:mac_os_x:10.5.3
  • Apple Mac OS X Server 10.5
    cpe:2.3:o:apple:mac_os_x_server:10.5
  • Apple Mac OS X Server 10.5.1
    cpe:2.3:o:apple:mac_os_x_server:10.5.1
  • Apple Mac OS X Server 10.5.2
    cpe:2.3:o:apple:mac_os_x_server:10.5.2
  • Apple Mac OS X Server 10.5.3
    cpe:2.3:o:apple:mac_os_x_server:10.5.3
CVSS
Base: 7.8 (as of 07-12-2007 - 17:53)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
exploit-db via4
description Apple Mac OS X 10.5.0 (leopard) vpnd Remote Denial of Service PoC. CVE-2007-6276. Dos exploit for osx platform
file exploits/osx/dos/4690.c
id EDB-ID:4690
last seen 2016-01-31
modified 2007-12-04
platform osx
port
published 2007-12-04
reporter mu-b
source https://www.exploit-db.com/download/4690/
title Apple Mac OS X 10.5.0 leopard vpnd Remote Denial of Service PoC
type dos
nessus via4
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_SECUPD2008-004.NASL
    description The remote host is running a version of Mac OS X 10.4 that does not have the security update 2008-004 applied. This update contains security fixes for a number of programs.
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 33282
    published 2008-07-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=33282
    title Mac OS X Multiple Vulnerabilities (Security Update 2008-004)
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_10_5_4.NASL
    description The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.4. Mac OS X 10.5.4 contains security fixes for multiple components.
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 33281
    published 2008-07-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=33281
    title Mac OS X 10.5.x < 10.5.4 Multiple Vulnerabilities
refmap via4
apple APPLE-SA-2008-06-30
bid 26699
confirm http://support.apple.com/kb/HT2163
exploit-db 4690
sectrack 1019052
secunia
  • 27938
  • 30802
vupen
  • ADV-2007-4145
  • ADV-2008-1981
xf macos-vpnd-dos(38855)
Last major update 18-07-2011 - 00:00
Published 07-12-2007 - 06:46
Last modified 28-09-2017 - 21:29
Back to Top