Executive Summary

Informations
NameCVE-2007-2386First vendor Publication2007-05-24
VendorCveLast vendor Modification2011-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:N/A:C)
Cvss Base Score9.4Attack RangeNetwork
Cvss Impact Score9.2Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer overflow in mDNSResponder in Apple Mac OS X 10.4 up to 10.4.9 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2386

CPE : Common Platform Enumeration

TypeDescriptionCount
Os9

OpenVAS Exploits

DateDescription
2012-02-12Name : Gentoo Security Advisory GLSA 201201-05 (mDNSResponder)
File : nvt/glsa_201201_05.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
35142Apple Mac OS X mDNSResponder UPnP Internet Gateway Device (IGD) Packet Remote...

Snort® IPS/IDS

DateDescription
2014-01-10Microsoft Windows UPnP Location overflow attempt
RuleID : 1388-community - Revision : 22 - Type : OS-WINDOWS
2014-01-10Microsoft Windows UPnP Location overflow attempt
RuleID : 1388 - Revision : 22 - Type : OS-WINDOWS

Metasploit Database

idDescription
2007-05-25 Mac OS X mDNSResponder UPnP Location Overflow

Nessus® Vulnerability Scanner

DateDescription
2012-01-23Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201201-05.nasl - Type : ACT_GATHER_INFO
2007-05-25Name : The remote host is missing a Mac OS X update that fixes several security issues.
File : macosx_SecUpd2007-005.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
APPLEhttp://lists.apple.com/archives/security-announce/2007/Jun/msg00001.html
http://lists.apple.com/archives/security-announce/2007/May/msg00004.html
BIDhttp://www.securityfocus.com/bid/24144
http://www.securityfocus.com/bid/24159
CERT-VNhttp://www.kb.cert.org/vuls/id/221876
CONFIRMhttp://docs.info.apple.com/article.html?artnum=305530
OSVDBhttp://www.osvdb.org/35142
SECTRACKhttp://www.securitytracker.com/id?1018123
SECUNIAhttp://secunia.com/advisories/25402
http://secunia.com/advisories/25745
VUPENhttp://www.vupen.com/english/advisories/2007/1939
http://www.vupen.com/english/advisories/2007/2269
XFhttp://xforce.iss.net/xforce/xfdb/34493

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2014-02-17 10:40:00
  • Multiple Updates
2014-01-19 21:24:05
  • Multiple Updates
2013-05-11 10:24:20
  • Multiple Updates