CVE-2007-0613

Apple Ichat - Denial of Service

Title source: rule

Description

The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.

Exploits (1)

exploitdb WORKING POC

rubydososx

https://www.exploit-db.com/exploits/3230

View Code ZIP pw:eip

References (4)

[Exploit, Vendor Advisory] http://projects.info-pull.com/moab/MOAB-29-01-2007.html

[Exploit] http://www.securityfocus.com/bid/22304

[Third Party Advisory, VDB Entry] http://www.osvdb.org/32698

[Third Party Advisory, VDB Entry] http://www.osvdb.org/32699

Scores

EPSS 0.0567

EPSS Percentile 90.4%

Details

Status published

Products (3)

apple/ichat 3.1.6

apple/instant_message_framework 428

apple/mdnsresponder

Published Jan 31, 2007

Tracked Since Feb 18, 2026