CVE-2007-4268

Published: Nov 15, 2007Modified: Apr 23, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation but is later interpreted as an unsigned value, which triggers a heap-based buffer overflow.

Affected (1)

Products: Apple: Mac Os X

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	From 10.4.0 to 10.4.10

Related CWEs

Incorrect Conversion between Numeric Types

When converting from one data type to another, such as long to integer, data can be omitted or translated in a way that produces unexpected values. If the resulting values are used in a sensitive context, then dangerous behaviors may occur.

References (18)

http://docs.info.apple.com/article.html?artnum=307041

Source: cve@mitre.org

Broken Link

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=628

Source: cve@mitre.org

Broken Link

http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

Source: cve@mitre.org

Mailing ListVendor Advisory

http://secunia.com/advisories/27643

Source: cve@mitre.org

Broken Link

http://securitytracker.com/id?1018950

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/26444

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

http://www.us-cert.gov/cas/techalerts/TA07-319A.html

Source: cve@mitre.org

Broken LinkThird Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2007/3868

Source: cve@mitre.org

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/38476

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://docs.info.apple.com/article.html?artnum=307041

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=628

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListVendor Advisory

http://secunia.com/advisories/27643

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://securitytracker.com/id?1018950

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/26444

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.us-cert.gov/cas/techalerts/TA07-319A.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryUS Government Resource

http://www.vupen.com/english/advisories/2007/3868

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/38476

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.