CVE-2008-4222 — Infinite Loop in Apple MAC OS X

CWE-3993 documents3 sources

Severity

7.1HIGHNVD

EPSS

0.2%

top 52.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedDec 17

Latest updateMay 2

Description

natd in network_cmds in Apple Mac OS X before 10.5.6, when Internet Sharing is enabled, allows remote attackers to cause a denial of service (infinite loop) via a crafted TCP packet.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

▶NVDapple/mac_os_x10.5.5+6

▶NVDapple/mac_os_x_server10.5.5+6

🔴Vulnerability Details

GHSA

GHSA-gr4q-ffwp-cmhv: natd in network_cmds in Apple Mac OS X before 10↗2022-05-02

▶

CVEList

CVE-2008-4222: natd in network_cmds in Apple Mac OS X before 10↗2008-12-17

▶