Filtered by vendor Apple
Subscriptions
Filtered by product Mac Os X Server
Subscriptions
Total
817 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2005-0127 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Mail in Mac OS X 10.3.7, when generating a Message-ID header, generates a GUUID that includes information that identifies the Ethernet hardware being used, which allows remote attackers to link mail messages to a particular machine. | ||||
CVE-2005-0126 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap. | ||||
CVE-2006-6129 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Integer overflow in the fatfile_getarch2 in Apple Mac OS X allows local users to cause a denial of service and possibly execute arbitrary code via a crafted Mach-O Universal program that triggers memory corruption. | ||||
CVE-2006-6126 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. | ||||
CVE-2006-6127 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. | ||||
CVE-2006-6062 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption. | ||||
CVE-2006-6061 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. NOTE: the severity of this issue has been disputed by a third party, who states that the impact is limited to a denial of service (kernel panic) due to a vm_fault call with a non-aligned address. | ||||
CVE-2006-5681 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet that accesses images that are being rendered by other embedded QuickTime objects. | ||||
CVE-2006-5051 | 4 Apple, Debian, Openbsd and 1 more | 5 Mac Os X, Mac Os X Server, Debian Linux and 2 more | 2024-08-07 | 8.1 High |
Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free. | ||||
CVE-2006-4095 | 3 Apple, Canonical, Isc | 4 Mac Os X, Mac Os X Server, Ubuntu Linux and 1 more | 2024-08-07 | 7.5 High |
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned. | ||||
CVE-2006-3500 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
The dynamic linker (dyld) in Apple Mac OS X 10.4.7 allows local users to execute arbitrary code via an "improperly handled condition" that leads to use of "dangerous paths," probably related to an untrusted search path vulnerability. | ||||
CVE-2006-3509 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Integer overflow in the API for the AirPort wireless driver on Apple Mac OS X 10.4.7 might allow physically proximate attackers to cause a denial of service (crash) or execute arbitrary code in third-party wireless software that uses the API via crafted frames. | ||||
CVE-2006-3508 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Heap-based buffer overflow in the AirPort wireless driver on Apple Mac OS X 10.4.7 allows physically proximate attackers to cause a denial of service (crash), gain privileges, and execute arbitrary code via a crafted frame that is not properly handled during scan cache updates. | ||||
CVE-2006-3503 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Integer overflow in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed GIF image. | ||||
CVE-2006-3504 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as "safe", which could allow attackers to execute Javascript code in local context when the "Open 'safe' files after downloading" option is enabled in Safari. | ||||
CVE-2006-3499 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
The dynamic linker (dyld) in Apple Mac OS X 10.3.9 allows local users to obtain sensitive information via unspecified dynamic linker options that affect the use of standard error (stderr) by privileged applications. | ||||
CVE-2006-3501 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Integer overflow in ImageIO for Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Radiance image. | ||||
CVE-2006-3502 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Unspecified vulnerability in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image that triggers a memory allocation failure that is not properly handled. | ||||
CVE-2006-3507 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
Multiple stack-based buffer overflows in the AirPort wireless driver on Apple Mac OS X 10.3.9 and 10.4.7 allow physically proximate attackers to execute arbitrary code by injecting crafted frames into a wireless network. | ||||
CVE-2006-3505 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-08-07 | N/A |
WebKit in Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML document that causes WebKit to access an object that has already been deallocated. |