CVE-2007-0613

iChat 3.1.6 - Denial of Service via Duplicate mDNS Query Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0613.

AI-analyzed exploit summary This Ruby script exploits a design weakness in iChat Bonjour services to conduct a denial of service (DoS) attack by registering multiple fake _presence records or causing an exception with a crafted TXT key hash.

Description

The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.

Exploits (1)

exploitdb WORKING POC

rubydososx

https://www.exploit-db.com/exploits/3230

View Code ZIP pw:eip

This Ruby script exploits a design weakness in iChat Bonjour services to conduct a denial of service (DoS) attack by registering multiple fake _presence records or causing an exception with a crafted TXT key hash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: iChat Bonjour services

No auth needed

Prerequisites: Network access to target iChat Bonjour services

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/32698

Exploit, Vendor Advisory x_refsource_misc

http://projects.info-pull.com/moab/MOAB-29-01-2007.html

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/22304

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/32699

Scores

EPSS 0.0567

EPSS Percentile 90.6%

Details

Status published

Products (3)

apple/ichat 3.1.6

apple/instant_message_framework 428

apple/mdnsresponder

Published Jan 31, 2007

Tracked Since Feb 18, 2026