CVE-2007-0614

Name of the Vulnerable Software and Affected Versions mDNSResponder version not specified Apple Mac OS X version 10.4.8 iChat version 3.1.6 InstantMessage framework version 428

Description The issue allows remote attackers to cause a denial of service, resulting in a persistent application crash. This is achieved by sending a crafted phsh hash attribute in a TXT key.

Recommendations For Apple Mac OS X version 10.4.8, consider disabling the Bonjour functionality as a temporary workaround until a patch is available. For iChat version 3.1.6, restrict the use of the InstantMessage framework to minimize the risk of exploitation. For mDNSResponder, avoid using crafted phsh hash attributes in TXT keys until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.