Vulnerabilities > CVE-2007-4702 - Unspecified vulnerability in Apple mac OS X and mac OS X Server

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
apple
nessus
NVD
Published: 2007-11-15
Updated: 2024-11-21

Summary

The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.

Vulnerable Configurations

Part Description Count
OS
Apple
2

Nessus

NASL familyMacOS X Local Security Checks
NASL idMACOSX_10_5_1.NASL
descriptionThe remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.1. This update contains several security fixes for the application Firewall.
last seen2020-06-01
modified2020-06-02
plugin id28252
published2007-11-16
reporterThis script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/28252
titleMac OS X 10.5.x < 10.5.1 Multiple Vulnerabilities
code
#
# (C) Tenable Network Security, Inc.
#

if ( ! defined_func("bn_random") ) exit(0);


include("compat.inc");

if(description)
{
 script_id(28252);
 script_version ("1.20");
 script_cve_id("CVE-2007-4702", "CVE-2007-4703", "CVE-2007-4704");
 script_bugtraq_id(26459, 26460, 26461);

 script_name(english:"Mac OS X 10.5.x < 10.5.1 Multiple Vulnerabilities");
 
 script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a Mac OS X update which fixes a security
issue." );
 script_set_attribute(attribute:"description", value:
"The remote host is running a version of Mac OS X 10.5.x that is prior
to 10.5.1.

This update contains several security fixes for the application 
Firewall." );
 script_set_attribute(attribute:"solution", value:
"Upgrade to Mac OS X 10.5.1 :


http://www.apple.com/support/downloads/macosx1051update.html" );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P");
 script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"false");
 script_set_attribute(attribute:"see_also", value:"http://docs.info.apple.com/article.html?artnum=307004" );

 script_set_attribute(attribute:"plugin_publication_date", value: "2007/11/16");
 script_set_attribute(attribute:"patch_publication_date", value: "2007/11/15");
 script_cvs_date("Date: 2018/07/14  1:59:35");
script_set_attribute(attribute:"plugin_type", value:"combined");
script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x");
script_end_attributes();

 script_summary(english:"Check for the version of Mac OS X");
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.");
 script_family(english:"MacOS X Local Security Checks");
 script_dependencies("ssh_get_info.nasl", "os_fingerprint.nasl");
 exit(0);
}


os = get_kb_item("Host/MacOSX/Version");
if ( ! os ) {
	os = get_kb_item("Host/OS");
	if (! os ) exit(0);
	conf = get_kb_item("Host/OS/Confidence");
	if ( conf <= 71 ) exit(0);
	}
if ( ereg(pattern:"Mac OS X 10\.5($|\.0)", string:os)) security_warning(0);

Seebug

bulletinFamilyexploit
descriptionBUGTRAQ ID: 26461 CVE(CAN) ID: CVE-2007-4702 Apple Mac OS X是苹果家族机器所使用的操作系统。 Mac OS X的应用防火墙设置存在误导性的功能描述,可能由于错误的安全认识导致信息泄露。 Mac OS X的应用防火墙的“阻断所有入站连接”设置允许任何以root用户权限(UID 0)运行的进程接收入站连接,也允许mDNSResponder接收连接,这可能导致非预期的暴露网络服务,远程攻击者可以破坏防火墙的安全策略执行某些网络攻击。 Apple Mac OS X 10.5 Apple MacOS X Server 10.5 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: <a href="http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16133&amp;cat=60&amp;platform=osx&amp;method=sa/MacOSXUpd10.5.1.dmg" target="_blank">http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16133&amp;cat=60&amp;platform=osx&amp;method=sa/MacOSXUpd10.5.1.dmg</a> <a href="http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16134&amp;cat=60&amp;platform=osx&amp;method=sa/MacOSXServerUpd10.5.1.dmg" target="_blank">http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16134&amp;cat=60&amp;platform=osx&amp;method=sa/MacOSXServerUpd10.5.1.dmg</a>
idSSV:2429
last seen2017-11-19
modified2007-11-17
published2007-11-17
reporterRoot
titleApple Mac OS X防火墙误导性配置漏洞

References