Computer Security

Mac OS X CFNetwork library DoS
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Mac OS X CFNetwork library DoS
Published:29.01.2007
Source:MOAB
SecurityVulns ID:7125
Type:library
Level:5/10
Description:NULL pointer dereference on HTTP server response parsing.
CVE:CVE-2007-0464 (The _CFNetConnectionWillEnqueueRequests function in CFNetwork 129.19 on Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (application crash) via a crafted HTTP 301 response, which results in a NULL pointer dereference.)
Original documentdocumentMOAB, MOAB-25-01-2007: Apple CFNetwork HTTP Response Denial of Service (29.01.2007)
Files:Proof of concept for Apple CFNetwork HTTP Response Denial of Service
 gcc MOAB-25-01-2007.c -o cfnet-http -framework Carbon
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru