Filtered by vendor Apple
Subscriptions
Filtered by product Mac Os X Server
Subscriptions
Total
817 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2010-1378 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | 9.8 Critical |
OpenSSL in Apple Mac OS X 10.6.x before 10.6.5 does not properly perform arithmetic, which allows remote attackers to bypass X.509 certificate authentication via an arbitrary certificate issued by a legitimate Certification Authority. | ||||
CVE-2013-0961 | 1 Apple | 3 Mac Os X, Mac Os X Server, Safari | 2024-09-16 | N/A |
WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0960. | ||||
CVE-2004-0926 | 2 Apple, Easy Software Products | 3 Mac Os X, Mac Os X Server, Cups | 2024-09-16 | N/A |
Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image. | ||||
CVE-2013-0975 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Buffer overflow in QuickDraw Manager in Apple Mac OS X before 10.8.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image. | ||||
CVE-2010-1375 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
NetAuthSysAgent in Network Authorization in Apple Mac OS X 10.5.8 does not have the expected authorization requirements, which allows local users to gain privileges via unspecified vectors. | ||||
CVE-2005-2508 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts. | ||||
CVE-2011-0244 | 2 Apple, Microsoft | 7 Mac Os X, Mac Os X Server, Safari and 4 more | 2024-09-16 | N/A |
WebKit in Apple Safari before 5.0.6 allows user-assisted remote attackers to read arbitrary files via vectors related to improper canonicalization of URLs within RSS feeds. | ||||
CVE-2011-0175 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Multiple buffer overflows in Apple Type Services (ATS) in Apple Mac OS X before 10.6.7 allow remote attackers to execute arbitrary code via a document that contains a crafted embedded TrueType font. | ||||
CVE-2011-3452 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Internet Sharing in Apple Mac OS X before 10.7.3 does not preserve the Wi-Fi configuration across software updates, which allows remote attackers to obtain sensitive information by leveraging the lack of a WEP password for a Wi-Fi network. | ||||
CVE-2013-0990 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
SMB in Apple Mac OS X before 10.8.4, when file sharing is enabled, allows remote authenticated users to create or modify files outside of a shared directory via unspecified vectors. | ||||
CVE-2010-0521 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open Directory via unspecified LDAP requests. | ||||
CVE-2013-0984 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Directory Service in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted message. | ||||
CVE-2006-4866 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument. | ||||
CVE-2010-1802 | 1 Apple | 3 Libsecurity, Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use of a www.example.con certificate to spoof www.example.com. | ||||
CVE-2011-0174 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X before 10.6.7 allows remote attackers to execute arbitrary code via a document that contains a crafted embedded OpenType font. | ||||
CVE-2011-0196 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
AirPort in Apple Mac OS X 10.5.8 allows remote attackers to cause a denial of service (out-of-bounds read and reboot) via Wi-Fi frames on the local wireless network. | ||||
CVE-2011-0180 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows local users to read arbitrary (1) HFS, (2) HFS+, or (3) HFS+J files via a crafted F_READBOOTSTRAP ioctl call. | ||||
CVE-2005-0972 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters. | ||||
CVE-2010-1377 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
Open Directory in Apple Mac OS X 10.6 before 10.6.4 creates an unencrypted connection upon certain SSL failures, which allows man-in-the-middle attackers to spoof arbitrary network account servers, and possibly execute arbitrary code, via unspecified vectors. | ||||
CVE-2010-0537 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2024-09-16 | N/A |
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a crafted share name. |