apple mac os x 10.4.11 vulnerabilities and exploits

(subscribe to this query)

10

CVSSv2

Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite what is stated in documentation, which might allow remote attackers to bypass intended access restrictions....

Apple Mac Os X 10.5.5 Apple Mac Os X Server 10.5.5 Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

2.1

CVSSv2

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user....

Apple Mac Os X Server 10.4.11 Apple Mac Os X Server 10.5.6 Apple Mac Os X 10.4.11 Apple Mac Os X 10.5.6

7.2

CVSSv2

csregprinter in the Printing component in Apple Mac OS X 10.4.11 and 10.5.6 does not properly handle error conditions, which allows local users to execute arbitrary code via unknown vectors that trigger a heap-based buffer overflow....

Apple Mac Os X 10.5.6 Apple Mac Os X Server 10.5.6 Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

6.8

CVSSv2

Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JBIG2 stream in a PDF file, leading to a heap-based buffer overflow....

Apple Mac Os X Server 10.5.8 Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11 Apple Mac Os X 10.5.8

7.2

CVSSv2

Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for configd (Networking component) in Mac OS X 10.4.11 and 10.5.5 allows local users to execute arbitrary code via unknown vectors....

Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11 Apple Mac Os X 10.5.5 Apple Mac Os X Server 10.5.5

7.8

CVSSv2

Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption....

Apple Mac Os X 10.5.6 Apple Mac Os X Server 10.5.6 Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

6.4

CVSSv2

Foundation in Apple Mac OS X 10.4.11 might allow context-dependent attackers to execute arbitrary code via a malformed selector name to the NSSelectorFromString API, which causes an "unexpected selector" to be used....

Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

6.8

CVSSv2

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is not properly handled when...

Apple Mac Os X Server 10.4.11 Apple Mac Os X 10.4.11

4.4

CVSSv2

notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notifications that prevent other applications from receiving notifications....

Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

5

CVSSv2

Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 10.5 allows remote attackers to read arbitrary files via directory traversal sequences in the URI....

Apple Mac Os X 10.4.11 Apple Mac Os X Server 10.4.11

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook