CVE-2007-4702
First published: Thu Nov 15 2007(Updated: )
The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Mac OS X | =10.5 | |
| Apple Mac OS X Server | =10.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.apple.com/archives/security-announce/2007/Nov/msg00004.html
- http://docs.info.apple.com/article.html?artnum=307004
- http://www.securityfocus.com/bid/26461
- http://securitytracker.com/id?1018958
- http://secunia.com/advisories/27695
- http://www.vupen.com/english/advisories/2007/3897
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38506
- collector/nvd-historical
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/remedy
- agent/author
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- agent/event
- agent/tags
- agent/source
- vendor/apple
- canonical/apple mac os x
- version/apple mac os x/10.5
- canonical/apple mac os x server
- version/apple mac os x server/10.5