Denial of Service Vulnerability in Apple Mac OS X Bonjour Functionality
CVE-2007-0614

Currently unrated

Key Information:

Vendor: Apple
Status: Instant Message Framework; Ichat
Vendor: CVE Published:; 31 January 2007

What is CVE-2007-0614?

The Bonjour functionality in Apple Mac OS X 10.4.8, including iChat 3.1.6, is susceptible to a denial of service attack. Remote attackers can exploit this vulnerability by sending a specially crafted phsh hash attribute within a TXT key, resulting in the persistent crashing of the affected applications. This flaw can be leveraged to disrupt services and affect the usability of systems relying on Bonjour for network services.

References

http://lists.apple.com/archives/Security-announce/2007/Fe...

vendor-advisoryx_refsource_APPLE

http://secunia.com/advisories/24198

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/23945

third-party-advisoryx_refsource_SECUNIA

EPSS Score

9% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 31, 2007
Vulnerability Reserved
Jan 30, 2007