Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0355 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple MAC OS X

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources

Severity

7.2HIGHNVD

EPSS

1.1%

top 22.36%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Apple MAC OS X Apple Minimal SLP Service Agent

Timeline

PublishedJan 19

Latest updateMay 1

Description

Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDapple/minimal_slp_service_agent10.4.11

▶NVDapple/mac_os_x10.4.8

🔴Vulnerability Details

GHSA

GHSA-2j76-52j5-65g4: Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10↗2022-05-01

▶

💥Exploits & PoCs

Exploit-DB

Apple Mac OSX 10.4.8 - SLP Daemon Service Registration Buffer Overflow (PoC)↗2007-01-18

▶

💬Community

Bugzilla

CVE-2007-1864 various PHP security issues (CVE-2007-2509 CVE-2007-2510)↗2007-05-04

▶