Buffer Overflow in iChat on Apple Mac OS X
CVE-2007-3748

Currently unrated

Key Information:

Vendor: Apple
Status: Ichat
Vendor: CVE Published:; 3 August 2007

What is CVE-2007-3748?

A vulnerability in the UPnP IGD implementation within iChat on Apple Mac OS X versions 10.3.9 and 10.4.10 could allow a network-adjacent attacker to execute arbitrary code. By sending crafted packets to the affected iChat versions, an attacker can exploit this buffer overflow, compromising the system's security and potentially gaining control over it. Users of the affected versions should update their software to mitigate this risk.

References

http://www.vupen.com/english/advisories/2007/2732

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/35732

vdb-entryx_refsource_XF

http://lists.apple.com/archives/security-announce//2007/J...

vendor-advisoryx_refsource_APPLE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 3, 2007
Vulnerability Reserved
Jul 12, 2007