CVE-2007-4703
First published: Thu Nov 15 2007(Updated: )
The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block incoming connections" has been set for its associated executable, which might allow remote attackers or local root processes to bypass intended access restrictions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple Mac OS X | =10.5 | |
| Apple Mac OS X Server | =10.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.apple.com/archives/security-announce/2007/Nov/msg00004.html
- http://docs.info.apple.com/article.html?artnum=307004
- http://www.securityfocus.com/bid/26460
- http://securitytracker.com/id?1018958
- http://secunia.com/advisories/27695
- http://www.vupen.com/english/advisories/2007/3897
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38479
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- agent/source
- vendor/apple
- canonical/apple mac os x
- version/apple mac os x/10.5
- canonical/apple mac os x server
- version/apple mac os x server/10.5