Filtered by vendor Apple
Subscriptions
Filtered by product Mac Os X Server
Subscriptions
Total
817 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2009-0140 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Unspecified vulnerability in the SMB component in Apple Mac OS X 10.4.11 and 10.5.6 allows remote SMB servers to cause a denial of service (memory exhaustion and system shutdown) via a crafted file system name. | ||||
CVE-2009-0139 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service (system shutdown) or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow. | ||||
CVE-2009-0138 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration. | ||||
CVE-2009-0137 | 2 Apple, Microsoft | 5 Mac Os X, Mac Os X Server, Safari and 2 more | 2024-11-21 | N/A |
Multiple unspecified vulnerabilities in Safari RSS in Apple Mac OS X 10.4.11 and 10.5.6, and Windows XP and Vista, allow remote attackers to execute arbitrary JavaScript in the local security zone via a crafted feed: URL, related to "input validation issues." | ||||
CVE-2009-0020 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption. | ||||
CVE-2009-0019 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Remote Apple Events in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) or obtain sensitive information via unspecified vectors that trigger an out-of-bounds memory access. | ||||
CVE-2009-0018 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
The Remote Apple Events server in Apple Mac OS X 10.4.11 and 10.5.6 does not properly initialize a buffer, which allows remote attackers to read portions of memory. | ||||
CVE-2009-0017 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
csregprinter in the Printing component in Apple Mac OS X 10.4.11 and 10.5.6 does not properly handle error conditions, which allows local users to execute arbitrary code via unknown vectors that trigger a heap-based buffer overflow. | ||||
CVE-2009-0015 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management." | ||||
CVE-2009-0014 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder. | ||||
CVE-2009-0013 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
dscl in DS Tools in Apple Mac OS X 10.4.11 and 10.5.6 requires that passwords must be provided as command line arguments, which allows local users to gain privileges by listing process information. | ||||
CVE-2009-0012 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted Unicode string. | ||||
CVE-2009-0011 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Certificate Assistant in Apple Mac OS X 10.5.6 allows local users to overwrite arbitrary files via unknown vectors related to an "insecure file operation" on a temporary file. | ||||
CVE-2009-0010 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a crafted 0x77 Poly tag and a crafted length field, which triggers a heap-based buffer overflow. | ||||
CVE-2009-0009 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Unspecified vulnerability in the Pixlet codec in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted movie file that triggers memory corruption. | ||||
CVE-2008-5183 | 4 Apple, Debian, Opensuse and 1 more | 6 Cups, Mac Os X, Mac Os X Server and 3 more | 2024-11-21 | 7.5 High |
cupsd in CUPS 1.3.9 and earlier allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leveraging CVE-2008-5184. | ||||
CVE-2008-4237 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Managed Client in Apple Mac OS X before 10.5.6 sometimes misidentifies a system when installing per-host configuration settings, which allows context-dependent attackers to have an unspecified impact by leveraging unintended settings, as demonstrated by the screen saver lock setting. | ||||
CVE-2008-4236 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Apple Type Services (ATS) in Apple Mac OS X 10.5 before 10.5.6 allows remote attackers to cause a denial of service (infinite loop) via a crafted embedded font in a PDF file. | ||||
CVE-2008-4234 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
Incomplete blacklist vulnerability in the Quarantine feature in CoreTypes in Apple Mac OS X 10.5 before 10.5.6 allows user-assisted remote attackers to execute arbitrary code via an executable file with the content type indicating no application association for the file, which does not trigger a "potentially unsafe" warning message. | ||||
CVE-2008-4224 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-11-21 | N/A |
UDF in Apple Mac OS X before 10.5.6 allows user-assisted attackers to cause a denial of service (system crash) via a malformed UDF volume in a crafted ISO file. |