6 matches found
CVE-2006-6900
Technical details about CVE-2006-6900 are not publicly available in the provided documents. Monitor for updates; no specifics on affected product versions, impact, vectors, or remediation are included here.
Image file crashes Finder, Safari and other apps
The file http://w148.de/cmertes/nachbarhaus1.exr will crash the Mac OS 10.4 Finder.app when it tries to preview it i.e. when opening the folder containing the file. Safari will crash when opening a html page with an img tag referring to this file. Preview.app and other applications are affected,...
Safari archive metadata command execution
Added: 02/24/2006 CVE: CVE-2006-0848 BID: 16736 OSVDB: 23366 Background The Safari web browser supports explicit binding, which allows a file to override the default application for its file type. Safe files are files such as pictures, movies, and archives which are opened automatically when...
CVE-2005-1505
The new account wizard in Mail.app 2.0 in Mac OS 10.4, when configuring an IMAP mail account and checking the credentials, does not prompt the user to use SSL until after the password has already been sent, which causes the password to be sent in plaintext...
CVE-2005-1505
The CVE describes a vulnerability in Mail.app 2.0 on Mac OS X 10.4 during IMAP account configuration: the new account wizard does not prompt for SSL until after the password is sent, allowing plaintext leakage. Affected component is the IMAP credential flow in Mail.app 2.0; root cause is delayed ...
CVE-2005-1505
The new account wizard in Mail.app 2.0 in Mac OS 10.4, when configuring an IMAP mail account and checking the credentials, does not prompt the user to use SSL until after the password has already been sent, which causes the password to be sent in plaintext...