CVE-2007-4269
Severity Score
7.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol (ASP) message on an AppleTalk socket, which triggers a heap-based buffer overflow.
Un desbordamiento de enteros en el componente Networking en Apple Mac OS X versiones 10.4 hasta 10.4.10, permite a usuarios locales ejecutar código arbitrario por medio de un mensaje de AppleTalk Session Protocol (ASP) diseñado en un socket de AppleTalk, que desencadena un desbordamiento de búfer en la región heap de la memoria .
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-08-09 CVE Reserved
- 2007-11-15 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-189: Numeric Errors
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://docs.info.apple.com/article.html?artnum=307041 | X_refsource_confirm | |
| http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=629 | Third Party Advisory | |
| http://securitytracker.com/id?1018950 | Vdb Entry | |
| http://www.securityfocus.com/bid/26444 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA07-319A.html | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/38473 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html | 2017-07-29 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/27643 | 2017-07-29 | |
| http://www.vupen.com/english/advisories/2007/3868 | 2017-07-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4 Search vendor "Apple" for product "Mac Os X" and version "10.4" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.1 Search vendor "Apple" for product "Mac Os X" and version "10.4.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.2 Search vendor "Apple" for product "Mac Os X" and version "10.4.2" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.3 Search vendor "Apple" for product "Mac Os X" and version "10.4.3" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.4 Search vendor "Apple" for product "Mac Os X" and version "10.4.4" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.5 Search vendor "Apple" for product "Mac Os X" and version "10.4.5" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.6 Search vendor "Apple" for product "Mac Os X" and version "10.4.6" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.7 Search vendor "Apple" for product "Mac Os X" and version "10.4.7" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.8 Search vendor "Apple" for product "Mac Os X" and version "10.4.8" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.9 Search vendor "Apple" for product "Mac Os X" and version "10.4.9" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.4.10 Search vendor "Apple" for product "Mac Os X" and version "10.4.10" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.4" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.0 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.0" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.1 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.1" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.2" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.3" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.4" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.5 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.5" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.6 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.6" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.7 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.7" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.8 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.8" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.9 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.9" | - |
Affected
| ||||||
| Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.4.10 Search vendor "Apple" for product "Mac Os X Server" and version "10.4.10" | - |
Affected
| ||||||