Denial of Service Vulnerability in Apple File Service by Apple
CVE-2005-0340

Currently unrated

Key Information:

Vendor: Apple
Status: Afp Server
Vendor: CVE Published:; 2 May 2005

Summary

An integer signedness error in Apple File Service can be exploited by remote attackers to trigger a denial of service. By sending a specially crafted packet with a negative UAM string length in a FPLoginExt packet, attackers can cause the application to crash, interrupting service and potentially compromising system integrity. Users of the AFP Server should apply the latest security updates to mitigate this vulnerability.

References

http://marc.info/?l=bugtraq&m=110791369419784&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/12478

vdb-entryx_refsource_BID

http://lists.apple.com/archives/security-announce/2005/Ma...

vendor-advisoryx_refsource_APPLE

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Feb 10, 2005