Vulnerabilities > Apple > Mdnsresponder

DATE CVE VULNERABILITY TITLE RISK
2016-06-26 CVE-2015-7988 NULL Pointer Dereference Remote Code Execution vulnerability in mDNSResponder
The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.
network
low complexity
apple
7.5
2016-06-26 CVE-2015-7987 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3ResourceRecord function.
network
apple CWE-119
6.8
2007-01-31 CVE-2007-0613 Remote Denial of Service vulnerability in Apple Ichat, Instant Message Framework and Mdnsresponder
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.
network
low complexity
apple
5.0