CVE-2007-4702

Name of the Vulnerable Software and Affected Versions: Apple Mac OS X version 10.5

Description: The issue concerns the Application Firewall in Apple Mac OS X, where enabling "Block all incoming connections" does not effectively block connections for root processes or mDNSResponder, potentially allowing remote attackers or local root processes to bypass intended access restrictions.

Recommendations: For Apple Mac OS X version 10.5, consider disabling the "Block all incoming connections" feature and instead implement more specific, restrictive firewall rules to minimize the risk of unauthorized access. Additionally, restrict access to root processes and mDNSResponder to prevent potential exploitation.