CVE-2006-4403

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.4.8 and earlier

Description The issue concerns the FTP server in the affected software, which crashes upon a login failure with a valid user name when FTP Access is enabled. This allows remote attackers to cause a denial of service, resulting in a crash, and potentially enumerate valid usernames.

Recommendations For Apple Mac OS X versions 10.4.8 and earlier, consider disabling FTP Access as a temporary workaround to minimize the risk of exploitation. Restrict access to the FTP server to prevent remote attackers from causing a denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.