Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple ichat server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2009-0152
iChat in Apple Mac OS X 10.5 prior to 10.5.7 disables SSL for AOL Instant Messenger (AIM) communication in certain circumstances that are inconsistent with the Require SSL setting, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X Server
NA
CVE-2012-4672
Apple iChat Server does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via responses for domains that were not asserted.
Apple Ichat Server
NA
CVE-2010-1374
Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 prior to 10.6.4, when AIM is used, allows remote malicious users to create arbitrary files via directory traversal sequences in an inline image-transfer operation.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.3
NA
CVE-2010-0502
iChat Server in Apple Mac OS X Server prior to 10.6.3, when group chat is used, does not perform logging for all types of messages, which might allow remote malicious users to avoid message auditing via an unspecified selection of message type.
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5
Apple Mac Os X Server
NA
CVE-2010-0503
Use-after-free vulnerability in iChat Server in Apple Mac OS X Server 10.5.8 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5
Apple Mac Os X Server
NA
CVE-2010-0504
Multiple stack-based buffer overflows in iChat Server in Apple Mac OS X Server prior to 10.6.3 allow remote malicious users to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.1
Apple Mac Os X Server 10.5.6
Apple Mac Os X Server 10.5.0
Apple Mac Os X Server 10.5.3
Apple Mac Os X Server 10.5.4
Apple Mac Os X Server 10.5.7
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.5
Apple Mac Os X Server
NA
CVE-2007-0746
Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 up to and including 10.4.9 allows remote malicious users to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.1
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.1
Apple Mac Os X 10.4.9
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.4
Apple Mac Os X Server 10.4.5
Apple Mac Os X 10.4
Apple Mac Os X Server 10.4.6
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4.8
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.5
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.8
Apple Mac Os X Server 10.4.7
Apple Mac Os X 10.4.2
NA
CVE-1999-0897
iChat ROOMS Webserver allows remote malicious users to read arbitrary files via a .. (dot dot) attack.
Apple Ichat Server 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started