Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4704

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-4704
Last Modified 18 Jul 2011 12:00:00
Published 15 Nov 2007 03:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4704

Summary

The Application Firewall in Apple Mac OS X 10.5 does not apply changed settings to processes that are started by launchd until the processes are restarted, which might allow attackers to bypass intended access restrictions.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.5


References

CONFIRM - http://docs.info.apple.com/article.html?artnum=307004

XF - macosx-appfw-launchd-bypass(38492)

VUPEN - ADV-2007-3897

BID - 26459

SECTRACK - 1018958

SECUNIA - 27695

APPLE - APPLE-SA-2007-11-15

Related Patches

Apple 2007-11-15 Mac OS X 10.5.1 Update

Apple 2007-11-15 Mac OS X Server 10.5.1 Update


Last Updated: 27 May 2016 10:45:57