7344 matches found
CVE-2007-0740
CVE-2007-0740 affects Apple Mac OS X 10.3.9 and 10.4.9. The issue lies in the Alias Manager, which fails to display files with the same name when mounted in disk images that share that name, potentially allowing a user-assisted attacker to trick the user into launching a malicious file. The avail...
CVE-2007-0740
Alias Manager in Apple Mac OS X 10.3.9 and 10.4.9 does not display files with the same name in mounted disk images that have the same name, which might allow user-assisted attackers to trick a user into executing malicious files...
Code injection
The SaveBarCode function in the Taltech Tal Bar Code ActiveX control allows remote attackers to cause a denial of service disk consumption by uploading multiple bar codes, as demonstrated by a WSF package...
CVE-2007-2566
The SaveBarCode function in the Taltech Tal Bar Code ActiveX control allows remote attackers to cause a denial of service disk consumption by uploading multiple bar codes, as demonstrated by a WSF package...
CVE-2007-2566
CVE-2007-2566 affects the Taltech Tal Bar Code ActiveX control. The SaveBarCode function allows remote attackers to cause a denial of service by uploading multiple bar codes, resulting in disk consumption. This is documented in the NVD entry and corroborated by multiple external references; explo...
Low: Red Hat Security Advisory: cpio security and bug fix update
An updated cpio package that fixes a security issue and various bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. GNU cpio copies files into or out of a cpio or tar archive. A buffer overflow was found in cpio on 64-bit platform...
CVE-2007-0734
fsck, as used by the AirPort Disk feature of the AirPort Extreme Base Station with 802.11n before Firmware Update 7.1, and by Apple Mac OS X 10.3.9 through 10.4.9, does not properly enforce password protection of a USB hard drive, which allows context-dependent attackers to list arbitrary...
Memory corruption
fsck, as used by the AirPort Disk feature of the AirPort Extreme Base Station with 802.11n before Firmware Update 7.1, and by Apple Mac OS X 10.3.9 through 10.4.9, does not properly enforce password protection of a USB hard drive, which allows context-dependent attackers to list arbitrary...
CVE-2007-0734
fsck, as used by the AirPort Disk feature of the AirPort Extreme Base Station with 802.11n before Firmware Update 7.1, and by Apple Mac OS X 10.3.9 through 10.4.9, does not properly enforce password protection of a USB hard drive, which allows context-dependent attackers to list arbitrary...
Mandrake Linux Security Advisory : kernel (MDKSA-2007:078)
Some vulnerabilities were discovered and corrected in the Linux 2.6 kernel : When SELinux hooks are enabled, the kernel could allow a local user to cause a DoS crash via a malformed file stream that triggers a NULL pointer derefernece CVE-2006-6056. Multiple buffer overflows in the 1 read and 2...
OpenAFS filesystem privilege esccalation
Attacke can make fake suid binary on network disk by using protocol weakness...
Apple Mac OS X fails to properly handle crafted AppleSingleEncoding disk images
Overview A vulnerabilty in the Apple Mac OS X AppleSingleEncoding disk image handler may allow execution of arbitrary code or denial of service. Description Apple Mac OS X contains a vulnerability that may be exploited when a user mounts a specially crafted AppleSingleEncoding disk image file...
Apple Mac OS X DMG UFS byte_swap_sbin() function Integer Overflow
Overview The Apple Mac OS X byteswapsbin function contains an integer overflow vulnerability, which may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service on a vulnerable system. Description DMG files are disk images that can contain a variety of...
CVE-2007-0721
Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted compressed disk image that triggers memory corruption...
CVE-2007-0722
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
Integer overflow
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
CVE-2007-0722
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
EUVD-2007-0719
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image...
Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)
Binary data 3947.prm...
Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)
The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.9 or a version of Mac OS X 10.3 which does not have Security Update 2007-003 applied. This update contains several security fixes for the following programs : - ColorSync - CoreGraphics - Crash Reporter - CUPS ...