28 matches found
EUVD-2004-0819
Malware in sbrugna...
EUVD-2007-5817
Malware in sbrugna...
EUVD-2004-0820
Malware in sbrugna...
EUVD-2005-0717
Malware in sbrugna...
Malicious code in core-foundation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b59f2696f224086d9b715ff12b5bfff30405a80837b27076dd60798d46cf68b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4432 Malicious code in core-foundation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1b59f2696f224086d9b715ff12b5bfff30405a80837b27076dd60798d46cf68b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in fiji-core-foundation (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 030c12f26f1b90ddf92e5edd56243d4b0a357d44d867c5ee071e544a490011a0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Apple iTunes for Windows, iCloud for Windows and tvOS CoreFoundation elevation of privilege vulnerability
Apple iTunes for Windows, iCloud for Windows, and tvOS are products of Apple Inc. Apple iTunes for Windows is a suite of media player applications for the Windows platform. iCloud for Windows is a cloud service for the Windows platform that supports storage of music, photos, apps, contacts, etc...
CVE-2017-13821
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "CFString" component. It allows attackers to bypass intended memory-read restrictions via a crafted app...
CVE-2017-2522
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "CoreFoundation" component. It allows remote attackers to execute arbitrary code or cause a...
CVE-2017-2522
CVE-2017-2522 concerns memory corruption in Apple’s CoreFoundation. The initial description confirms that iOS before 10.3.2, macOS before 10.12.5, tvOS before 10.2.1, and watchOS before 3.2.2 are affected by a vulnerability in CoreFoundation that allows remote attackers to execute arbitrary code ...
Apple Mac OS X 10.3.x Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12863/info Multiple security vulnerabilities are reported to affect Apple Mac OS X. These issues were disclosed in the referenced vendor advisory. Insecure permissions are reported to be set on certain Apple Mac OS X...
Mac OS X Security Update 2007-009
The remote host is missing Security Update 2007-009. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Mac OS X Security Update 2007-009
The remote host is missing Security Update 2007-009. One or more of the following components are affected: Address Book CFNetwork ColorSync Core Foundation CUPS Desktop Services Flash Player Plug-in GNU Tar iChat IO Storage Family Launch Services Mail perl python Quick Look ruby Safari Safari RSS...
Race condition
Race condition in the CFURLWriteDataAndPropertiesToResource API in Core Foundation in Apple Mac OS X 10.4.11 creates files with insecure permissions, which might allow local users to obtain sensitive information...
CVE-2007-5847
Race condition in the CFURLWriteDataAndPropertiesToResource API in Core Foundation in Apple Mac OS X 10.4.11 creates files with insecure permissions, which might allow local users to obtain sensitive information...
CVE-2007-5847
CVE-2007-5847 is a race condition in the CFURLWriteDataAndPropertiesToResource API within Core Foundation on Mac OS X 10.4.11. The flaw causes created files to inherit insecure permissions, potentially allowing local users to access sensitive information. The vulnerability affects Mac OS X 10.4.1...
MOAB-22-01-2007: Apple UserNotificationCenter Privilege Escalation Vulnerability
Summary The following description about CFUserNotification is available from Apple's Mac OS X Core Foundation reference: A CFUserNotification object presents a simple dialog on the screen and optionally receives feedback from the user. The contents of the dialog can include a header, a message, a...
CVE-2005-0716
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CFCHARSETPATH environment variable...
CVE-2005-0716
CVE-2005-0716 affects Mac OS X 10.3.5/10.3.6 (and possibly earlier) where a stack-based buffer overflow in the Core Foundation Library is triggered by a long CF_CHARSET_PATH environment variable. This local vulnerability could allow an attacker to execute arbitrary code on the affected system; iD...