EUVD-2006-3501

Malware in sbrugna...

EUVD-2009-2197

Malware in sbrugna...

The vulnerability of the Xsan component of the Mac OS system allows attackers to gain increased privileges.

The vulnerability of the Xsan component in the Mac OS operating system is related to a potential integer overflow. Exploiting this vulnerability could allow an attacker to gain increased privileges remotely...

PT-2025-5322 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 Description: The issue is related to an integer overflow in the Xsan component of the Mac OS operating system. This can allow a remote attacker to...

Apple Xsan Admin出错消息信息泄露漏洞

BUGTRAQ ID: 36385 CVECAN ID: CVE-2009-2201 Xsan是一个企业级的存储网络解决方案，Xsan Admin是用于简化SAN管理的应用。 通过Xsan Admin进行屏幕共享可能会提供包含有用户名和口令的出错对话框，能够查看用户显示的攻击者可以读取明文的用户凭据。 Apple Xsan 2.1.1 厂商补丁： Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.apple.com/support/downloads/...

Design/Logic Flaw

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

CVE-2009-2201

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

CVE-2009-2201

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

CVE-2009-2201

The CVE-2009-2201 issue affects Apple Xsan Admin: screensharing in Xsan Admin before 2.2 exposes a cleartext username and password in a URL within an error dialog. This local-authentication leakage can be read by physically proximate attackers who view the dialog. Affected component: Xsan Admin s...

CVE-2009-2201

The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...

Apple Xsan文件系统路径名缓冲区溢出漏洞

Apple Xsan是一款文件系统，可让多个Xserve服务器在SAN网络中，通过光纤通道在文件级别的并行存取工作。 Apple Xsan处理路径名缺少正确的边界条件检查，远程攻击者可以利用漏洞以系统进程权限执行任意指令。 Apple Xsan文件系统驱动处理路径名时存在缓冲区溢出，恶意用户可以通过访问Xsan卷触发此漏洞，可导致系统崩溃或以进程权限执行任意指令。 Apple Xsan 1.3 Apple Xsan 1.2 Apple Xsan 1.0 下载Xsan Filesystem 1.4： http://www.apple.com/xsan/...

CVE-2006-3506

Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "processing a path name."...

CVE-2006-3506

Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "processing a path name."...

CVE-2006-3506

CVE-2006-3506 affects Apple Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7. A buffer overflow in the driver may allow a local, authenticated user with write access to execute arbitrary code via a crafted path name. Impact includes remote/root-level code execution or DoS as state...

Xsan Filesystem fails to properly process path names

Overview A buffer overflow vulnerability in Apple's Xsan product may allow a local attacker to run arbitrary code with root privileges or create a denial-of-service condition. Description Xsan FilesystemXsan is a Storage Area Network SAN filesystem designed for use by Apple OS X and OS X Server...

Mac OS X XSan filesystem driver buffer overflow

Buffer overflow on oversized path...

[SA21551] Xsan Filesystem Path Name Buffer Overflow Vulnerability

---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...