CVE-2007-6276

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.5.4

Description The issue allows remote attackers to cause a denial of service, resulting in a divide-by-zero error and daemon crash, by sending a crafted load balancing packet to UDP port 4112. This is due to a problem in the accept connections function in the virtual private network daemon (vpnd).

Recommendations For Apple Mac OS X versions prior to 10.5.4, update to version 10.5.4 or later to resolve the issue. As a temporary workaround, consider restricting access to UDP port 4112 to minimize the risk of exploitation.