PT-2007-1826 · Apple · Minimal Slp V2 Service Agent+1
Kevin Finisterre
·
Published
2007-01-19
·
Updated
2017-10-19
·
CVE-2007-0355
CVSS v2.0
7.2
High
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Mac OS X versions 10.4.11 and earlier
Description:
A buffer overflow issue exists in the Apple Minimal SLP v2 Service Agent (slpd) that allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid
attr-list field.Recommendations:
For Mac OS X versions 10.4.11 and earlier, update to a version later than 10.4.11 to resolve the issue.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Minimal Slp V2 Service Agent
Macos X