Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple cfnetwork vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2403
CFNetwork on Apple Mac OS X 10.3.9 and 10.4.10 does not properly validate ftp: URIs, which allows remote malicious users to trigger the transmission of arbitrary FTP commands to arbitrary FTP servers.
Apple Cfnetwork
NA
CVE-2007-0464
The _CFNetConnectionWillEnqueueRequests function in CFNetwork 129.19 on Apple Mac OS X 10.4 up to and including 10.4.10 allows remote malicious users to cause a denial of service (application crash) via a crafted HTTP 301 response, which results in a NULL pointer dereference.
Cfnetwork Cfnetwork 129.19
1 EDB exploit
NA
CVE-2010-1800
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle malicious users to redirect a connection and obtain sensitive information via crafted responses.
Apple Cfnetwork
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
NA
CVE-2006-4401
Unspecified vulnerability in CFNetwork in Mac OS 10.4.8 and previous versions allows user-assisted remote malicious users to execute arbitrary FTP commands via a crafted FTP URI.
Apple Mac Os X
NA
CVE-2011-0214
CFNetwork in Apple Safari prior to 5.0.6 on Windows does not properly handle an untrusted attribute of a system root certificate, which allows remote web servers to bypass intended SSL restrictions via a certificate signed by a blacklisted certification authority.
Apple Safari 2.0.1
Apple Safari 2.0.3
Apple Safari 1.2.2
Apple Safari 1.2.0
Apple Safari 1.0.3
Apple Safari 1.0
Apple Safari 3.0
Apple Safari 2.0.4
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 1.3.2
Apple Safari 3.2.1
Apple Safari 5.0.2
Apple Safari 3.1.0
Apple Safari 3.0.2
Apple Cfnetwork
Apple Safari 1.3.0
Apple Safari 1.2.3
Apple Safari 1.3.1
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.0.0b1
NA
CVE-2010-1383
CFNetwork in Apple Safari prior to 5.0.6 on Windows allows remote web servers to execute arbitrary code by replaying the NTLM credentials of a client user, related to a "credential reflection" issue.
Apple Safari 1.3.1
Apple Safari 1.2.4
Apple Safari 1.2.2
Apple Safari 2.0.2
Apple Safari 1.1.0
Apple Safari 1.0.1
Apple Safari 1.0.0
Apple Safari 2.0.3
Apple Safari 1.0
Apple Safari 2
Apple Safari 1.2
Apple Safari 2.0.1
Apple Safari 1.3.2
Apple Safari 1.1.1
Apple Safari 1.0.3
Apple Safari 1.0.2
Apple Safari 5.0.1
Apple Safari 3.0.0
Apple Safari 2.0.4
Apple Safari 2.0.0
Apple Safari 3.0.1b
Apple Safari 1.1
NA
CVE-2010-1420
Cross-site scripting (XSS) vulnerability in CFNetwork in Apple Safari prior to 5.0.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted text/plain file.
Apple Safari 2.0.3
Apple Safari 1.3.0
Apple Safari 2.0.2
Apple Safari 1.2.1
Apple Safari 1.0.2
Apple Safari 1.2.5
Apple Safari 1.3.2
Apple Safari 1.1.1
Apple Safari 1.0
Apple Safari 3.0.0b
Apple Safari 5.0.1
Apple Safari 3.0.0
Apple Safari 2.0.4
Apple Safari 3.1.1
Apple Safari 2.0.0
Apple Safari 3.0.1b
Apple Safari 1.1
Apple Safari 3.1.2
Apple Safari 5.0.3
Apple Safari 5.0.4
Apple Safari
Apple Cfnetwork
NA
CVE-2009-1716
CFNetwork in Apple Safari prior to 4.0 on Windows does not properly protect the temporary files created for downloads, which allows local users to obtain sensitive information by reading these files.
Apple Safari 3.0.4
Apple Safari 3.1.1
Apple Safari 1.2
Apple Safari 1.3
Apple Safari
Apple Safari 3.0.2
Apple Safari 0.8
Apple Safari 1.0
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 3.1
Apple Safari 3.1.2
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 0.9
Apple Safari 3.0
Apple Safari 3.0.3
Apple Safari 1.0.3
Apple Safari 1.1
Apple Safari 2.0.4
Apple Safari 3.2.1
Apple Safari 3.2.3
NA
CVE-2009-1704
CFNetwork in Apple Safari prior to 4.0 misinterprets downloaded image files as local HTML documents in unspecified circumstances, which allows remote malicious users to execute arbitrary JavaScript code by placing it in an image file.
Apple Safari 1.1
Apple Safari 1.2
Apple Safari 1.3
Apple Safari 3.2.3
Apple Safari
Apple Safari 0.8
Apple Safari 1.0
Apple Safari 2.0.4
Apple Safari 3.2.1
Apple Safari 3.0.4
Apple Safari 1.0.3
Apple Safari 3.1.1
Apple Safari 1.3.1
Apple Safari 1.3.2
Apple Safari 3.0.2
Apple Safari 0.9
Apple Safari 3.1
Apple Safari 3.1.2
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 3.0.3
Apple Safari 3.0
NA
CVE-2011-3255
CFNetwork in Apple iOS prior to 5 stores AppleID credentials in an unspecified file, which makes it easier for remote malicious users to obtain sensitive information via a crafted application.
Apple Iphone Os 4.3.0
Apple Iphone Os 4.2.8
Apple Iphone Os 4.2.5
Apple Iphone Os 4.0.1
Apple Iphone Os 3.1
Apple Iphone Os 4.3.2
Apple Iphone Os 4.3.1
Apple Iphone Os 4.0.2
Apple Iphone Os 3.2.1
Apple Iphone Os 4.3.5
Apple Iphone Os 4.3.3
Apple Iphone Os 4.0
Apple Iphone Os 3.2
Apple Iphone Os 3.2.2
Apple Iphone Os 3.0
Apple Iphone Os 4.2.1
Apple Iphone Os 4.1
Apple Iphone Os 3.1.3
Apple Iphone Os 3.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »