4 matches found
CVE-2008-4368
The default configuration of Java 1.5 on Apple Mac OS X 10.5.4 and 10.5.5 contains a jurisdiction policy that limits Java Cryptography Extension JCE key sizes to 128 bits, which makes it easier for attackers to decrypt ciphertext produced by JCE...
PT-2008-5010 · Oracle · Java
Name of the Vulnerable Software and Affected Versions: Java versions prior to the fixed version on Mac OS X 10.4.11, 10.5.4, and 10.5.5 Description: The issue is related to an error checking problem in the Hash-based Message Authentication Code HMAC provider in Java, which uses an uninitialized...
CVE-2008-2305
Heap-based buffer overflow in Apple Type Services ATS in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to execute arbitrary code via a document containing a crafted font, related to "PostScript font names."...
CVE-2008-3617
Remote Management and Screen Sharing in Apple Mac OS X 10.5 through 10.5.4, when used to set a password for a VNC viewer, displays additional input characters beyond the maximum password length, which might make it easier for attackers to guess passwords that the user believed were longer...