VYPR

Bonjour

by Apple Inc.

CVEs (3)

  • CVE-2008-2326Sep 11, 2008
    risk 0.04cvss epss 0.07

    mDNSResponder in the Bonjour Namespace Provider in Apple Bonjour for Windows before 1.0.5 allows attackers to cause a denial of service (NULL pointer dereference and application crash) by resolving a crafted .local domain name that contains a long label.

  • CVE-2011-0220Feb 5, 2020
    risk 0.00cvss epss 0.00

    Apple Bonjour before 2011 allows a crash via a crafted multicast DNS packet.

  • CVE-2008-3630Sep 11, 2008
    risk 0.00cvss epss 0.01

    mDNSResponder in Apple Bonjour for Windows before 1.0.5, when an application uses the Bonjour API for unicast DNS, does not choose random values for transaction IDs or source ports in DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.