apple mac os x 10.1 vulnerabilities and exploits

(subscribe to this query)

9.3

CVSSv2

Integer underflow in Help Viewer in Apple Mac OS X before 10.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted help:topic URL that triggers a buffer overflow....

Apple Mac Os X 10.0 Apple Mac Os X 10.1 Apple Mac Os X 10.2 Apple Mac Os X 10.3 Apple Mac Os X

7.2

CVSSv2

NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges....

Apple Mac Os X 10.0 Apple Mac Os X 10.0.1 Apple Mac Os X 10.0.2 Apple Mac Os X 10.0.3 Apple Mac Os X 10.0.4 Apple Mac Os X 10.1

2.1

CVSSv2

Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the username and password on the command line, which allows local users to obtain authentication information via the ps command....

Apple Mac Os X 10.0 Apple Mac Os X 10.1 Apple Mac Os X 10.1.1 Apple Mac Os X 10.1.2 Apple Mac Os X 10.1.3 Apple Mac Os X 10.1.4 Apple Mac Os X 10.1.5

3.6

CVSSv2

Apple MacOS X 10.0 and 10.1 allow a local user to read and write to a user's desktop folder via insecure default permissions for the Desktop when it is created in some languages....

Apple Mac Os X 10.0 Apple Mac Os X 10.0.1 Apple Mac Os X 10.0.2 Apple Mac Os X 10.0.3 Apple Mac Os X 10.0.4 Apple Mac Os X 10.1

4.6

CVSSv2

Mac OS X before 10.3.8 users world-writable permissions for certain directories, which may allow local users to gain privileges, possibly via the receipt cache or ColorSync profiles....

Apple Mac Os X 10.1 Apple Mac Os X 10.2 Apple Mac Os X 10.3.4

6.8

CVSSv2

Mail in Apple Mac OS X before 10.5, when an IPv6 SMTP server is used, does not properly initialize memory, which might allow remote attackers to execute arbitrary code or cause a denial of service (application crash), or obtain sensitive information (memory contents) in...

Apple Mac Os X 10.0 Apple Mac Os X 10.1 Apple Mac Os X 10.2 Apple Mac Os X 10.3 Apple Mac Os X 10.4

7.5

CVSSv2

SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse...

Apple Mac Os X 10.1 Apple Mac Os X 10.1.1 Apple Mac Os X 10.1.2 Apple Mac Os X 10.1.3 Apple Mac Os X 10.1.4 Apple Mac Os X 10.1.51 EDB exploit available

5

CVSSv2

The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic....

Apple Mac Os X 10.0 Apple Mac Os X 10.0.1 Apple Mac Os X 10.0.2 Apple Mac Os X 10.0.3 Apple Mac Os X 10.0.4 Apple Mac Os X 10.1 Apple Mac Os X 10.1.1 Apple Mac Os X 10.1.2 Apple Mac Os X 10.1.3 Apple Mac Os X 10.1.4 Apple Mac Os X 10.1.5

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook