Description
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh hash attribute in a TXT key.
Affected products
- Apple / ichat3.1.6 – 3.1.6
- Apple / instant_message_framework428 – 428
- Apple / mac_os_x10.4.8 – 10.4.8
References
- MAILING_LISThttp://lists.apple.com/archives/Security-announce/2007/Feb/msg00000.html
- VENDOR_ADVISORYhttp://secunia.com/advisories/24198
- VENDOR_ADVISORYhttp://secunia.com/advisories/23945
- MISChttp://www.securitytracker.com/id?1017661
- MISChttp://projects.info-pull.com/moab/MOAB-29-01-2007.html
- MISChttp://www.osvdb.org/32713
- VENDOR_ADVISORYhttp://docs.info.apple.com/article.html?artnum=305102
- MISChttp://www.securityfocus.com/bid/22304