Vulnerabilities > Apple > Ichat > Medium

DATE CVE VULNERABILITY TITLE RISK
2007-08-03 CVE-2007-3748 Multiple Security vulnerability in Apple Mac OS X 2007-007
Buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in iChat on Apple Mac OS X 10.3.9 and 10.4.10 allows network-adjacent remote attackers to execute arbitrary code via a crafted packet.
5.4
2007-08-03 CVE-2007-3747 Multiple Security vulnerability in Apple Mac OS X 2007-007
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not restrict object instantiation and manipulation to valid heap addresses, which allows remote attackers to execute arbitrary code via a crafted applet.
network
apple
6.8
2007-08-03 CVE-2007-3746 Multiple Security vulnerability in Apple Mac OS X 2007-007
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not properly check the bounds of heap read and write operations, which allows remote attackers to execute arbitrary code via a crafted applet.
network
apple
6.8
2007-01-31 CVE-2007-0613 Remote Denial of Service vulnerability in Apple Ichat, Instant Message Framework and Mdnsresponder
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.
network
low complexity
apple
5.0