Mac Os X@10.5 Security Vulnerabilities and Issues — Mac Os X@10.5 CVE List

Lucene search

AppleMac Os X10.5

12 matches found

cve•added 2010/03/30 6:30 p.m.•64 views

CVE-2010-0508

Mail in Apple Mac OS X before 10.6.3 does not disable the filter rules associated with a deleted mail account, which has unspecified impact and attack vectors.

10CVSS8.6AI score0.00352EPSS

cve•added 2010/03/25 9:0 p.m.•58 views

CVE-2010-1119

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database...

10CVSS8.6AI score0.28439EPSS

cve•added 2010/03/30 6:30 p.m.•54 views

CVE-2010-0513

Stack-based buffer overflow in PS Normalizer in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PostScript document.

6.8CVSS9.3AI score0.01901EPSS

cve•added 2010/03/30 6:30 p.m.•52 views

CVE-2010-0063

Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X before 10.6.3 makes it easier for user-assisted remote attackers to execute arbitrary JavaScript via a web page that offers a download with a Content-Type value that is not on the list of possibly unsafe content types for Safari, as ...

6.8CVSS8.9AI score0.00345EPSS

cve•added 2010/03/30 6:30 p.m.•50 views

CVE-2010-0497

Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image, which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type.

6.8CVSS9.1AI score0.01097EPSS

cve•added 2010/03/30 6:30 p.m.•49 views

CVE-2010-0509

SFLServer in OS Services in Apple Mac OS X before 10.6.3 allows local users to gain privileges via vectors related to use of wheel group membership during access to the home directories of user accounts.

7.2CVSS8AI score0.00039EPSS

cve•added 2010/03/30 5:30 p.m.•48 views

CVE-2010-0057

AFP Server in Apple Mac OS X before 10.6.3 does not prevent guest use of AFP shares when guest access is disabled, which allows remote attackers to bypass intended access restrictions via a mount request.

7.5CVSS8.4AI score0.00225EPSS

cve•added 2010/03/30 6:30 p.m.•48 views

CVE-2010-0505

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 (JPEG2000) image, related to incorrect calculation and the CGImageReadGetBytesAtOffset function.

6.8CVSS9.3AI score0.02436EPSS

cve•added 2010/03/30 6:30 p.m.•46 views

CVE-2010-0498

Directory Services in Apple Mac OS X before 10.6.3 does not properly perform authorization during processing of record names, which allows local users to gain privileges via unspecified vectors.

7.2CVSS8AI score0.00042EPSS

cve•added 2010/03/30 6:30 p.m.•45 views

CVE-2010-0507

Buffer overflow in Image RAW in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PEF image.

6.8CVSS9.3AI score0.01241EPSS

cve•added 2010/03/30 6:30 p.m.•42 views

CVE-2010-0065

Disk Images in Apple Mac OS X before 10.6.3 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image with bzip2 compression.

6.8CVSS9.3AI score0.01178EPSS

cve•added 2010/03/30 6:30 p.m.•40 views

CVE-2010-0500

Event Monitor in Apple Mac OS X before 10.6.3 does not properly validate hostnames of SSH clients, which allows remote attackers to cause a denial of service (arbitrary client blacklisting) via a crafted DNS PTR record, related to a "plist injection issue."

7.8CVSS8.3AI score0.00428EPSS