PT-2007-2197 · Apple · Macos X

Published

2007-04-24

Updated

2011-03-08

CVE-2007-0746

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions 10.3.9 through 10.4.9

Description The issue is related to a heap-based buffer overflow in the VideoConference framework, which can be exploited by remote attackers to execute arbitrary code. This is achieved by sending a crafted SIP packet when initializing an audio/video conference.

Recommendations For Apple Mac OS X versions 10.3.9 through 10.4.9, update to a version that contains a fix for this issue to prevent exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0746

Affected Products

Macos X

PT-2007-2197 · Apple · Macos X

CVE-2007-0746

Related Identifiers

Affected Products

References · 10