Mac Os X@10.4 Security Vulnerabilities and Issues — Mac Os X@10.4 CVE List

Lucene search

AppleMac Os X10.4

37 matches found

CVE•added 2007/03/13 10:19 p.m.•55 views

CVE-2007-0722

Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image.

6.8CVSS8AI score0.09583EPSS

CVE•added 2007/03/13 9:19 p.m.•51 views

CVE-2007-0719

Stack-based buffer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via an image with a crafted ColorSync profile.

6.8CVSS8.1AI score0.13074EPSS

CVE•added 2007/05/24 10:30 p.m.•51 views

CVE-2007-2386

Buffer overflow in mDNSResponder in Apple Mac OS X 10.4 up to 10.4.9 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.

9.4CVSS7.7AI score0.71927EPSS

CVE•added 2007/03/13 10:19 p.m.•48 views

CVE-2007-0726

The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys, which causes the keys to be regenerated and can break trust relationships that were base...

5CVSS7.4AI score0.01123EPSS

CVE•added 2007/03/13 10:19 p.m.•48 views

CVE-2007-0728

Unspecified vulnerability in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 creates files insecurely while initializing a USB printer, which allows local users to create or overwrite arbitrary files.

4.4CVSS7.3AI score0.00076EPSS

CVE•added 2007/04/24 5:19 p.m.•47 views

CVE-2007-0735

Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving crafted web pages that trigger certain error conditions that are not properly...

9.3CVSS7.9AI score0.01481EPSS

CVE•added 2007/08/03 10:17 a.m.•47 views

CVE-2007-3744

Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in mDNSResponder on Apple Mac OS X 10.4.10 before 20070731 allows network-adjacent remote attackers to execute arbitrary code via a crafted packet.

5.8CVSS7.5AI score0.05939EPSS

CVE•added 2007/11/15 1:46 a.m.•47 views

CVE-2007-4678

AppleRAID in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows attackers to cause a denial of service (crash) via a crafted striped disk image, which triggers a NULL pointer dereference when it is mounted.

7.1CVSS6.7AI score0.00519EPSS

CVE•added 2007/03/13 10:19 p.m.•46 views

CVE-2007-0721

Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted compressed disk image that triggers memory corruption.

6.8CVSS7.9AI score0.02355EPSS

CVE•added 2007/04/24 4:19 p.m.•46 views

CVE-2007-0729

Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment before executing commands, which allows local users to gain privileges by setting unspecified environment variables.

7.2CVSS6.1AI score0.00083EPSS

CVE•added 2007/04/24 5:19 p.m.•45 views

CVE-2007-0746

Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".

10CVSS7.7AI score0.35054EPSS

CVE•added 2007/07/17 9:30 p.m.•45 views

CVE-2007-3828

Unspecified vulnerability in mDNSResponder in Apple Mac OS X allows remote attackers to execute arbitrary code via unspecified vectors, a related issue to CVE-2007-2386.

10CVSS7.4AI score0.71927EPSS

CVE•added 2007/03/13 10:19 p.m.•44 views

CVE-2007-0724

The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.

6.9CVSS7.3AI score0.00093EPSS

CVE•added 2007/04/24 4:19 p.m.•44 views

CVE-2007-0732

Unspecified vulnerability in the CoreServices daemon in CarbonCore in Apple Mac OS X 10.4 through 10.4.9 allows local users to gain privileges via unspecified vectors involving "obtaining a send right to [the] Mach task port."

7.2CVSS6AI score0.00054EPSS

CVE•added 2007/04/24 5:19 p.m.•44 views

CVE-2007-0738

The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver authentication dialog in certain circumstances when waking from sleep, even though the "require a password to wake the computer from sleep" option is enabled, which allows local users to bypass authentication c...

4.6CVSS6.2AI score0.00092EPSS

CVE•added 2007/05/24 10:30 p.m.•44 views

CVE-2007-0753

Format string vulnerability in the VPN daemon (vpnd) in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter.

7.2CVSS7.4AI score0.00412EPSS

CVE•added 2007/11/15 1:46 a.m.•44 views

CVE-2007-4269

Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol (ASP) message on an AppleTalk socket, which triggers a heap-based buffer overflow.

7.2CVSS7.5AI score0.00114EPSS

CVE•added 2007/04/10 10:19 p.m.•43 views

CVE-2007-0734

fsck, as used by the AirPort Disk feature of the AirPort Extreme Base Station with 802.11n before Firmware Update 7.1, and by Apple Mac OS X 10.3.9 through 10.4.9, does not properly enforce password protection of a USB hard drive, which allows context-dependent attackers to list arbitrary directori...

5.4CVSS6.9AI score0.00463EPSS

CVE•added 2007/04/24 5:19 p.m.•43 views

CVE-2007-0739

The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update window beneath the loginwindow authentication dialog in certain circumstances related to running scheduled tasks, which allows local users to bypass authentication controls.

4.6CVSS6AI score0.00082EPSS

CVE•added 2007/11/15 1:46 a.m.•43 views

CVE-2007-4683

Directory traversal vulnerability in the kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to bypass the chroot mechanism via a relative path when changing the current working directory.

4.6CVSS6.7AI score0.00052EPSS

CVE•added 2007/01/08 8:0 p.m.•42 views

CVE-2006-6900

Unspecified vulnerability in the Bluetooth stack in Apple Mac OS 10.4 has unknown impact and attack vectors, related to an "implementation bug."

10CVSS6.5AI score0.00334EPSS

CVE•added 2007/05/24 10:30 p.m.•42 views

CVE-2007-0751

A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command.

2.1CVSS7.1AI score0.00073EPSS

CVE•added 2007/11/15 1:46 a.m.•42 views

CVE-2007-4684

Integer overflow in the kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a large num_sels argument to the i386_set_ldt system call.

6.9CVSS7.4AI score0.00247EPSS

CVE•added 2007/03/13 10:19 p.m.•41 views

CVE-2007-0723

Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors.

8.5CVSS7.4AI score0.02179EPSS

CVE•added 2007/04/24 5:19 p.m.•41 views

CVE-2007-0744

SMB in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when executing commands, which allows local users to gain privileges by setting unspecified environment variables.

7.2CVSS6.1AI score0.00066EPSS

CVE•added 2007/05/24 10:30 p.m.•41 views

CVE-2007-0750

Integer overflow in CoreGraphics in Apple Mac OS X 10.4 up to 10.4.9 allows remote user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted PDF file.

9.3CVSS7.6AI score0.05527EPSS

CVE•added 2007/08/03 10:17 a.m.•41 views

CVE-2007-2404

CRLF injection vulnerability in CFNetwork on Apple Mac OS X 10.3.9 and 10.4.10 before 20070731 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in an unspecified context. NOTE: this can be leveraged for cross-site scripting (XSS...

5CVSS5.7AI score0.00516EPSS

CVE•added 2007/11/15 1:46 a.m.•41 views

CVE-2007-4267

Stack-based buffer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted IOCTL request that adds an AppleTalk zone to a routing table.

7.2CVSS7.5AI score0.00114EPSS

CVE•added 2007/04/24 5:19 p.m.•40 views

CVE-2007-0737

The Login Window in Apple Mac OS X 10.3.9 through 10.4.9 does not properly check certain environment variables, which allows local users to gain privileges via unspecified vectors.

4.6CVSS6AI score0.00074EPSS

CVE•added 2007/04/24 4:19 p.m.•39 views

CVE-2007-0725

Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through 10.4.9, when running on hardware with the original AirPort wireless card, allows local users to execute arbitrary code by "sending malformed control commands."

7.2CVSS7.2AI score0.00085EPSS

CVE•added 2007/04/24 5:19 p.m.•39 views

CVE-2007-0736

Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via crafted requests to portmap.

9.3CVSS7.6AI score0.18668EPSS

CVE•added 2007/12/18 8:46 p.m.•38 views

CVE-2007-5862

Java in Mac OS X 10.4 through 10.4.11 allows remote attackers to bypass Keychain access controls and add or delete arbitrary Keychain items via a crafted Java applet.

9.4CVSS6.8AI score0.00207EPSS

CVE•added 2007/12/06 2:46 a.m.•37 views

CVE-2007-6261

Integer overflow in the load_threadstack function in the Mach-O loader (mach_loader.c) in the xnu kernel in Apple Mac OS X 10.4 through 10.5.1 allows local users to cause a denial of service (infinite loop) via a crafted Mach-O binary.

4.9CVSS5.9AI score0.00146EPSS

CVE•added 2007/04/24 5:19 p.m.•36 views

CVE-2007-0741

Buffer overflow in natd in network_cmds in Apple Mac OS X 10.3.9 through 10.4.9, when Internet Sharing is enabled, allows remote attackers to execute arbitrary code via malformed RTSP packets.

7.5CVSS7.6AI score0.04389EPSS

CVE•added 2007/04/24 5:19 p.m.•36 views

CVE-2007-0743

URLMount in Apple Mac OS X 10.3.9 through 10.4.9 passes the username and password credentials for mounting filesystems on SMB servers as command line arguments to the mount_sub command, which may allow local users to obtain sensitive information by listing the process.

4.9CVSS5.7AI score0.00071EPSS

CVE•added 2007/04/24 5:19 p.m.•34 views

CVE-2007-0747

load_webdav in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when mounting a WebDAV filesystem, which allows local users to gain privileges by setting unspecified environment variables.

7.2CVSS6AI score0.00083EPSS

CVE•added 2007/11/15 1:46 a.m.•33 views

CVE-2007-4681

Buffer overflow in CoreFoundation in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted directory hierarchy.

6.9CVSS7.6AI score0.00103EPSS