Computer Security
[EN] securityvulns.ru no-pyccku


Mac OS X CFNetwork library DoS
Published:29.01.2007
Source:
SecurityVulns ID:7125
Type:library
Threat Level:
5/10
Description:NULL pointer dereference on HTTP server response parsing.
CVE:CVE-2007-0464 (The _CFNetConnectionWillEnqueueRequests function in CFNetwork 129.19 on Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (application crash) via a crafted HTTP 301 response, which results in a NULL pointer dereference.)
Original documentdocumentMOAB, MOAB-25-01-2007: Apple CFNetwork HTTP Response Denial of Service (29.01.2007)
Files:Proof of concept for Apple CFNetwork HTTP Response Denial of Service
 gcc MOAB-25-01-2007.c -o cfnet-http -framework Carbon

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod