CVE-2007-0355 - Vulnerability Details - OpenCVE

Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.02092.

Key SSVC decision points have not yet been added.

Vendors	Products
Apple	Mac Os X Minimal Slp Service Agent

Configuration 1 [-]

cpe:2.3:a:apple:minimal_slp_service_agent:10.4.11:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2007-0357	Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://docs.info.apple.com/article.html?artnum=307430
http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html
http://projects.info-pull.com/moab/MOAB-17-01-2007.html
http://secunia.com/advisories/23796
http://securitytracker.com/id?1017533
http://securitytracker.com/id?1019359
http://www.osvdb.org/32693
http://www.securityfocus.com/bid/22101
http://www.us-cert.gov/cas/techalerts/TA08-043B.html
http://www.vupen.com/english/advisories/2007/0239
https://exchange.xforce.ibmcloud.com/vulnerabilities/31562
https://www.exploit-db.com/exploits/3151

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-01-19T01:00:00

Updated: 2024-08-07T12:12:18.154Z

Reserved: 2007-01-18T00:00:00

Link: CVE-2007-0355

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-01-19T01:28:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-0355

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://docs.info.apple.com/article.html?artnum=307430"}, {"name": "1019359", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1019359"}, {"name": "3151", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/3151"}, {"name": "1017533", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017533"}, {"name": "32693", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/32693"}, {"tags": ["x_refsource_MISC"], "url": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html"}, {"name": "ADV-2007-0239", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0239"}, {"name": "TA08-043B", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"}, {"name": "23796", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/23796"}, {"name": "APPLE-SA-2008-02-11", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"}, {"name": "22101", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22101"}, {"name": "macos-slpd-bo(31562)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31562"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0355", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://docs.info.apple.com/article.html?artnum=307430", "refsource": "CONFIRM", "url": "http://docs.info.apple.com/article.html?artnum=307430"}, {"name": "1019359", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1019359"}, {"name": "3151", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/3151"}, {"name": "1017533", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017533"}, {"name": "32693", "refsource": "OSVDB", "url": "http://www.osvdb.org/32693"}, {"name": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html", "refsource": "MISC", "url": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html"}, {"name": "ADV-2007-0239", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0239"}, {"name": "TA08-043B", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"}, {"name": "23796", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/23796"}, {"name": "APPLE-SA-2008-02-11", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"}, {"name": "22101", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22101"}, {"name": "macos-slpd-bo(31562)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31562"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T12:12:18.154Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://docs.info.apple.com/article.html?artnum=307430"}, {"name": "1019359", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1019359"}, {"name": "3151", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/3151"}, {"name": "1017533", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1017533"}, {"name": "32693", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/32693"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html"}, {"name": "ADV-2007-0239", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/0239"}, {"name": "TA08-043B", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"}, {"name": "23796", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/23796"}, {"name": "APPLE-SA-2008-02-11", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"}, {"name": "22101", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/22101"}, {"name": "macos-slpd-bo(31562)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31562"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0355", "datePublished": "2007-01-19T01:00:00", "dateReserved": "2007-01-18T00:00:00", "dateUpdated": "2024-08-07T12:12:18.154Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apple:minimal_slp_service_agent:10.4.11:*:*:*:*:*:*:*", "matchCriteriaId": "7987D395-AFC0-4B68-BE5A-27507D4A83FC", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*", "matchCriteriaId": "09ED46A8-1739-411C-8807-2A416BDB6DFE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field."}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer en Apple Minimal SLP v2 Service Agent (slpd) en Mac OS X versi\u00f3n 10.4.11 y anteriores, incluyendo versi\u00f3n 10.4.8, permite a usuarios locales, y posiblemente a atacantes remotos, alcanzar privilegios y posiblemente ejecutar c\u00f3digo arbitrario por medio de una petici\u00f3n de registro con un campo attr-list no v\u00e1lido."}], "id": "CVE-2007-0355", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-01-19T01:28:00.000", "references": [{"source": "cve@mitre.org", "url": "http://docs.info.apple.com/article.html?artnum=307430"}, {"source": "cve@mitre.org", "url": "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"}, {"source": "cve@mitre.org", "url": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23796"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017533"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1019359"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/32693"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/22101"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/0239"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31562"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/3151"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://docs.info.apple.com/article.html?artnum=307430"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://projects.info-pull.com/moab/MOAB-17-01-2007.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/23796"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1017533"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1019359"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/32693"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/22101"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-043B.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/0239"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31562"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/3151"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}