Apple Mac OS X Firewall Blacklist Denial of Service Vulnerability
Apple Mac OS X is prone to a remote denial-of-service vulnerability because it fails to properly sanitize user-supplied input.
Successful exploits may allow attackers to add arbitrary systems to the firewall blacklist, resulting in denial-of-service conditions.
The following are vulnerable:
Mac OS X 10.5.8
Mac OS X Server 10.5.8
Mac OS X 10.6 through 10.6.2
Mac OS X Server 10.6 through 10.6.2
NOTE: This issue was previously covered in BID 39020 (Apple Mac OS X APPLE-SA-2010-03-29-1 Multiple Security Vulnerabilities) but has been assigned its own record to better document it.