16 matches found
EUVD-2009-2197
Malware in sbrugna...
EUVD-2006-3501
Malware in sbrugna...
PT-2025-5322 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 Description: The issue is related to an integer overflow in the Xsan component of the Mac OS operating system. This can allow a remote attacker to...
Apple Xsan Admin出错消息信息泄露漏洞
BUGTRAQ ID: 36385 CVECAN ID: CVE-2009-2201 Xsan是一个企业级的存储网络解决方案,Xsan Admin是用于简化SAN管理的应用。 通过Xsan Admin进行屏幕共享可能会提供包含有用户名和口令的出错对话框,能够查看用户显示的攻击者可以读取明文的用户凭据。 Apple Xsan 2.1.1 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com/support/downloads/...
CVE-2009-2201
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...
CVE-2009-2201
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...
Design/Logic Flaw
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...
CVE-2009-2201
The CVE-2009-2201 issue affects Apple Xsan Admin: screensharing in Xsan Admin before 2.2 exposes a cleartext username and password in a URL within an error dialog. This local-authentication leakage can be read by physically proximate attackers who view the dialog. Affected component: Xsan Admin s...
CVE-2009-2201
The screensharing feature in the Admin application in Apple Xsan before 2.2 places a cleartext username and password in a URL within an error dialog, which allows physically proximate attackers to obtain credentials by reading this dialog...
Apple Xsan文件系统路径名缓冲区溢出漏洞
Apple Xsan是一款文件系统,可让多个Xserve服务器在SAN网络中,通过光纤通道在文件级别的并行存取工作。 Apple Xsan处理路径名缺少正确的边界条件检查,远程攻击者可以利用漏洞以系统进程权限执行任意指令。 Apple Xsan文件系统驱动处理路径名时存在缓冲区溢出,恶意用户可以通过访问Xsan卷触发此漏洞,可导致系统崩溃或以进程权限执行任意指令。 Apple Xsan 1.3 Apple Xsan 1.2 Apple Xsan 1.0 下载Xsan Filesystem 1.4: http://www.apple.com/xsan/...
CVE-2006-3506
Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "processing a path name."...
CVE-2006-3506
Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "processing a path name."...
CVE-2006-3506
CVE-2006-3506 affects Apple Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7. A buffer overflow in the driver may allow a local, authenticated user with write access to execute arbitrary code via a crafted path name. Impact includes remote/root-level code execution or DoS as state...
Xsan Filesystem fails to properly process path names
Overview A buffer overflow vulnerability in Apple's Xsan product may allow a local attacker to run arbitrary code with root privileges or create a denial-of-service condition. Description Xsan FilesystemXsan is a Storage Area Network SAN filesystem designed for use by Apple OS X and OS X Server...
[SA21551] Xsan Filesystem Path Name Buffer Overflow Vulnerability
---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...
Mac OS X XSan filesystem driver buffer overflow
Buffer overflow on oversized path...