CVE ID:	CVE-2007-4702
Description:	The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remote attackers or local root processes to bypass intended access restrictions.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4702 http://lists.apple.com/archives/security-announce/2007/Nov/msg00004.html BugTraq ID: 26461 http://www.securityfocus.com/bid/26461 http://www.vupen.com/english/advisories/2007/3897 http://securitytracker.com/id?1018958 http://secunia.com/advisories/27695 XForce ISS Database: macosx-appfw-connect-bypass(38506) http://xforce.iss.net/xforce/xfdb/38506

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: