Vulnerabilities > CVE-2007-4702 - Unspecified vulnerability in Apple mac OS X and mac OS X Server

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

apple

critical

nessus

NVD

Published: 2007-11-15

Updated: 2017-07-29

Summary

The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.

Vulnerable Configurations

Part	Description	Count
OS	Apple Apple MAC OS X 10.5 Apple MAC OS X Server 10.5	2

Nessus

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_10_5_1.NASL
description	The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.1. This update contains several security fixes for the application Firewall.
last seen	2020-06-01
modified	2020-06-02
plugin id	28252
published	2007-11-16
reporter	This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/28252
title	Mac OS X 10.5.x < 10.5.1 Multiple Vulnerabilities
code	# # (C) Tenable Network Security, Inc. # if ( ! defined_func("bn_random") ) exit(0); include("compat.inc"); if(description) { script_id(28252); script_version ("1.20"); script_cve_id("CVE-2007-4702", "CVE-2007-4703", "CVE-2007-4704"); script_bugtraq_id(26459, 26460, 26461); script_name(english:"Mac OS X 10.5.x < 10.5.1 Multiple Vulnerabilities"); script_set_attribute(attribute:"synopsis", value: "The remote host is missing a Mac OS X update which fixes a security issue." ); script_set_attribute(attribute:"description", value: "The remote host is running a version of Mac OS X 10.5.x that is prior to 10.5.1. This update contains several security fixes for the application Firewall." ); script_set_attribute(attribute:"solution", value: "Upgrade to Mac OS X 10.5.1 : http://www.apple.com/support/downloads/macosx1051update.html" ); script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"see_also", value:"http://docs.info.apple.com/article.html?artnum=307004" ); script_set_attribute(attribute:"plugin_publication_date", value: "2007/11/16"); script_set_attribute(attribute:"patch_publication_date", value: "2007/11/15"); script_cvs_date("Date: 2018/07/14 1:59:35"); script_set_attribute(attribute:"plugin_type", value:"combined"); script_set_attribute(attribute:"cpe", value:"cpe:/o:apple:mac_os_x"); script_end_attributes(); script_summary(english:"Check for the version of Mac OS X"); script_category(ACT_GATHER_INFO); script_copyright(english:"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc."); script_family(english:"MacOS X Local Security Checks"); script_dependencies("ssh_get_info.nasl", "os_fingerprint.nasl"); exit(0); } os = get_kb_item("Host/MacOSX/Version"); if ( ! os ) { os = get_kb_item("Host/OS"); if (! os ) exit(0); conf = get_kb_item("Host/OS/Confidence"); if ( conf <= 71 ) exit(0); } if ( ereg(pattern:"Mac OS X 10\.5($\|\.0)", string:os)) security_warning(0);

Seebug

bulletinFamily	exploit
description	BUGTRAQ ID: 26461 CVE(CAN) ID: CVE-2007-4702 Apple Mac OS X是苹果家族机器所使用的操作系统。 Mac OS X的应用防火墙设置存在误导性的功能描述，可能由于错误的安全认识导致信息泄露。 Mac OS X的应用防火墙的“阻断所有入站连接”设置允许任何以root用户权限（UID 0）运行的进程接收入站连接，也允许mDNSResponder接收连接，这可能导致非预期的暴露网络服务，远程攻击者可以破坏防火墙的安全策略执行某些网络攻击。 Apple Mac OS X 10.5 Apple MacOS X Server 10.5 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： <a href="http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16133&cat=60&platform=osx&method=sa/MacOSXUpd10.5.1.dmg" target="_blank">http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16133&cat=60&platform=osx&method=sa/MacOSXUpd10.5.1.dmg</a> <a href="http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16134&cat=60&platform=osx&method=sa/MacOSXServerUpd10.5.1.dmg" target="_blank">http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=16134&cat=60&platform=osx&method=sa/MacOSXServerUpd10.5.1.dmg</a>
id	SSV:2429
last seen	2017-11-19
modified	2007-11-17
published	2007-11-17
reporter	Root
title	Apple Mac OS X防火墙误导性配置漏洞

Summary

Vulnerable Configurations

Nessus

Seebug

References