CVE-2007-0236

N/A Unknown
Published: January 16, 2007 Modified: April 23, 2026
View on NVD

Description

Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (kernel panic) and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://docs.info.apple.com/article.html?artnum=305214
Source: cve@mitre.org
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
Source: cve@mitre.org
http://projects.info-pull.com/moab/MOAB-14-01-2007.html
Source: cve@mitre.org
http://secunia.com/advisories/23708
Source: cve@mitre.org
Vendor Advisory
http://secunia.com/advisories/24479
Source: cve@mitre.org
Vendor Advisory
http://securitytracker.com/id?1017513
Source: cve@mitre.org
http://www.osvdb.org/32687
Source: cve@mitre.org
http://www.securityfocus.com/bid/22041
Source: cve@mitre.org
http://www.securitytracker.com/id?1017751
Source: cve@mitre.org
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
Source: cve@mitre.org
US Government Resource
http://www.vupen.com/english/advisories/2007/0191
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2007/0930
Source: cve@mitre.org
https://www.exploit-db.com/exploits/3130
Source: cve@mitre.org
http://docs.info.apple.com/article.html?artnum=305214
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://projects.info-pull.com/moab/MOAB-14-01-2007.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/23708
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/24479
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://securitytracker.com/id?1017513
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.osvdb.org/32687
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/22041
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1017751
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.vupen.com/english/advisories/2007/0191
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2007/0930
Source: af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/3130
Source: af854a3a-2127-422b-91ae-364da2661108

26 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
50.9%
98th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

apple

Related CVEs

CVE-2026-7513 8.8
CVE-2026-7512 8.8
CVE-2026-5656 7.0
CVE-2026-5405 7.8
CVE-2026-5404 4.7