Vulmon Recent Vulnerabilities Discussions Trends Blog About Contact

mac os x vulnerabilities and exploits

9.3
CVSSv2
CVE-2010-3654

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute...

AdobeAcrobatAcrobat ReaderFlash PlayerMacromedia
7.5
CVSSv2
CVE-2003-0871

Unknown vulnerability in QuickTime Java in Mac OS X v10.3 and Mac OS X Server 10.3 allows attackers to gain "unauthorized access to a system."...

AppleMac Os XMac Os X Server
7.5
CVSSv2
CVE-2004-1082

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials....

ApacheHttp ServerAppleApache Mod Digest AppleAvayaCommunication ManagerIntuity Audix LxMn100Network RoutingModular Messaging Message Storage ServerHpVirtualvaultWebproxyIbmOpenbsdScoOpenserverSunSolarisSunos
5
CVSSv2
CVE-2004-1084

Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles....

AppleDarwin Streaming ServerQuicktime Streaming ServerMac Os XMac Os X Server
5
CVSSv2
CVE-2004-1083

Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using...

AppleDarwin Streaming ServerQuicktime Streaming ServerMac Os XMac Os X Server
7.2
CVSSv2
CVE-2007-3749

The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread Port or Thread Exception Port when executing a setuid program, which allows local users to execute arbitrary code by creating the port before launching the setuid program, then writing to...

AppleMac Os X
9.3
CVSSv2
CVE-2008-4234

Incomplete blacklist vulnerability in the Quarantine feature in CoreTypes in Apple Mac OS X 10.5 before 10.5.6 allows user-assisted remote attackers to execute arbitrary code via an executable file with the content type indicating no application association for the file, which...

AppleMac Os XMac Os X Server
6.6
CVSSv2
CVE-2007-3876

Stack-based buffer overflow in SMB in Apple Mac OS X 10.4.11 allows local users to execute arbitrary code via (1) a long workgroup (-W) option to mount_smbfs or (2) an unspecified manipulation of the command line to smbutil....

AppleMac Os X
6.8
CVSSv2
CVE-2011-0205

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image....

AppleImageioMac Os XMac Os X Server
4.9
CVSSv2
CVE-2011-1132

The IPv6 implementation in the kernel in Apple Mac OS X before 10.6.8 allows local users to cause a denial of service (NULL pointer dereference and reboot) via vectors involving socket options....

AppleMac Os XMac Os X Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code executionCVE-2019-0234CVE-2019-1010048CVE-2019-0708microsoftwindows 10CVE-2019-1099CVE-2019-1575arbitrary CVE-2019-11580memory leak