CVE-2007-0614

Apple Ichat - Denial of Service

Title source: rule

Description

The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh hash attribute in a TXT key.

Exploits (1)

exploitdb WORKING POC

rubydososx

https://www.exploit-db.com/exploits/3230

View Code ZIP pw:eip

References (8)

[Vendor Advisory] http://docs.info.apple.com/article.html?artnum=305102

[Mailing List] http://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html

[Exploit] http://projects.info-pull.com/moab/MOAB-29-01-2007.html

[Exploit] http://www.securityfocus.com/bid/22304

[Third Party Advisory, VDB Entry] http://www.osvdb.org/32713

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1017661

[Third Party Advisory] http://secunia.com/advisories/23945

[Third Party Advisory] http://secunia.com/advisories/24198

Scores

EPSS 0.1019

EPSS Percentile 93.2%

Details

Status published

Products (3)

apple/ichat 3.1.6

apple/instant_message_framework 428

apple/mac_os_x 10.4.8

Published Jan 31, 2007

Tracked Since Feb 18, 2026