CVE-2010-0500

Name of the Vulnerable Software and Affected Versions Apple Mac OS X versions prior to 10.6.3

Description The issue is related to a "plist injection issue" where the Event Monitor in Apple Mac OS X does not properly validate hostnames of SSH clients. This allows remote attackers to cause a denial of service by arbitrarily blacklisting clients via a crafted DNS PTR record.

Recommendations For versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue. As a temporary workaround, consider restricting access to SSH services to minimize the risk of exploitation.