Mac Os X Server Security Vulnerabilities and Issues — Mac Os X Server CVE List

Lucene search

AppleMac Os X Server

8 matches found

CVE•added 2008/10/10 10:30 a.m.•52 views

CVE-2008-4211

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Microsoft ...

10CVSS7.3AI score0.13955EPSS

CVE•added 2008/10/10 10:30 a.m.•48 views

CVE-2008-3642

Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via an image with a crafted ICC profile.

9.3CVSS7.8AI score0.24954EPSS

CVE•added 2008/10/10 10:30 a.m.•44 views

CVE-2008-3647

Buffer overflow in PSNormalizer in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a PostScript file with a crafted bounding box comment.

9.3CVSS7.8AI score0.05563EPSS

CVE•added 2008/10/10 10:30 a.m.•43 views

CVE-2008-3645

Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for configd (Networking component) in Mac OS X 10.4.11 and 10.5.5 allows local users to execute arbitrary code via unknown vectors.

7.2CVSS7.6AI score0.00068EPSS

CVE•added 2008/10/10 10:30 a.m.•43 views

CVE-2008-4215

Weblog in Mac OS X Server 10.4.11 does not properly check an error condition when a weblog posting access control list is specified for a user that has multiple short names, which might allow attackers to bypass intended access restrictions.

7.5CVSS6.5AI score0.00707EPSS

CVE•added 2008/10/10 10:30 a.m.•40 views

CVE-2008-4214

Unspecified vulnerability in Script Editor in Mac OS X 10.4.11 and 10.5.5 allows local users to cause the scripting dictionary to be written to arbitrary locations, related to an "insecure file operation" on temporary files.

4.6CVSS6.1AI score0.00069EPSS

CVE•added 2008/10/10 10:30 a.m.•39 views

CVE-2008-4212

Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite what is stated in documentation, which might allow remote attackers to bypass intended access restrictions.

10CVSS6.6AI score0.00803EPSS

CVE•added 2008/10/10 10:30 a.m.•38 views

CVE-2008-3643

Unspecified vulnerability in Finder in Mac OS X 10.5.5 allows user-assisted attackers to cause a denial of service (continuous termination and restart) via a crafted Desktop file that generates an error when producing its icon, related to an "error recovery issue."

7.8CVSS6.3AI score0.01028EPSS