Design/Logic Flaw

servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service CPU and memory consumption, via an XML-RPC request containing an entity declaration in conjunction with an entity reference,...

CVE-2011-0212

CVE-2011-0212 affects Apple Mac OS X Server (servermgrd) prior to 10.6.8. An XML External Entity (XXE) flaw in servermgrd’s XML-RPC handling can allow remote attackers to read arbitrary files and potentially send HTTP requests to intranet servers, with possible CPU/memory DoS. Root cause: unsafe ...

CVE-2011-0212

servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service CPU and memory consumption, via an XML-RPC request containing an entity declaration in conjunction with an entity reference,...

Mac OS X 10.6.x < 10.6.8 Multiple Vulnerabilities

The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.8. This update contains security-related fixes for the following components : - App Store - ATS - Certificate Trust Policy - CoreFoundation - CoreGraphics - FTP Server - ImageIO - International Components for Unicode -...

Mac OS X Multiple Vulnerabilities (Security Update 2011-004)

The remote host is running a version of Mac OS X 10.5 that does not have Security Update 2011-004 applied. This update contains security- related fixes for the following components : - AirPort - App Store - ColorSync - CoreGraphics - ImageIO - Libsystem - libxslt - MySQL - patch - Samba -...

Mac OS X 10.6 < 10.6.8 Multiple Vulnerabilities

Binary data 800790.prm...

Mac OS X Security Update 2009-001

The remote host is missing Security Update 2009-001. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

CVE-2009-0138

servermgrd Server Manager in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration...

Mac OS X Multiple Vulnerabilities (Security Update 2009-001)

The remote host is running a version of Mac OS X 10.5 or 10.4 that does not have Security Update 2009-001 applied. This security update contains fixes for the following products : - AFP Server - Apple Pixlet Video - CarbonCore - CFNetwork - Certificate Assistant - ClamAV - CoreText - CUPS - DS...

CVE-2009-0138

CVE-2009-0138 affects Apple Mac OS X 10.5.6 where servermgrd (Server Manager) fails to validate authentication credentials, enabling remote attackers to modify system configuration. The issue is documented in NVD and reflected in OpenVAS MAC OS X Security Update 2009-001, which covers servermgrd ...

Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)

The remote host is running a version of Mac OS X 10.4 which is older than version 10.4.9 or a version of Mac OS X 10.3 which does not have Security Update 2007-003 applied. This update contains several security fixes for the following programs : - ColorSync - CoreGraphics - Crash Reporter - CUPS ...

Mac OS X < 10.4.9 Multiple Vulnerabilities (Security Update 2007-003)

Binary data 3947.prm...

Multiple MacOS X vulnerabilities

Apple Mac OS X Directory Services contains a buffer overflow, Apple Mac OS X Server servermgrd authentication vulnerable to buffer overflow, Apple Mac OS X AppKit vulnerable to buffer overflow via the handling of maliciously crafted rich text files, Apple Mac OS X AppKit vulnerable to buffer...

CVE-2005-2518

CVE-2005-2518 corresponds to a buffer overflow in the Mac OS X Server component servermgrd during authentication on Mac OS X 10.3.9 and 10.4.2. The unspecified overflow may allow remote attackers to execute arbitrary code with the privileges of the servermgrd process. The vulnerability is address...

Mac OS X Multiple Vulnerabilities (Security Update 2005-007)

The remote host is running a version of Mac OS X 10.4 or 10.3 that does not have Security Update 2005-007 applied. This security update contains fixes for the following products : - Apache 2 - AppKit - Bluetooth - CoreFoundation - CUPS - Directory Services - HItoolbox - Kerberos - loginwindow -...

Apple Mac OS X Server servermgrd authentication vulnerable to buffer overflow

Overview Apple Mac OS X Server servermgrd contains an unspecified buffer overflow vulnerability in the authentication handling routines. This vulnerability may lead to remote execution of arbitrary code. Description Mac OS X Server contains the servermgrd application for back-end management...