Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.9.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1322
The kernel in Apple OS X up to and including 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mechanism by reading an unspecified attribute of the object.
Apple Mac Os X 10.9
Apple Mac Os X 10.9.1
Apple Mac Os X
1 EDB exploit
1 Github repository
NA
CVE-2014-1320
IOKit in Apple iOS prior to 7.1.1, Apple OS X up to and including 10.9.2, and Apple TV prior to 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the objec...
Apple Mac Os X 10.9
Apple Mac Os X 10.9.1
Apple Mac Os X
Apple Iphone Os 7.0.4
Apple Iphone Os
Apple Iphone Os 7.0.5
Apple Iphone Os 7.0.6
Apple Iphone Os 7.0.1
Apple Iphone Os 7.0.2
Apple Iphone Os 7.0
Apple Iphone Os 7.0.3
Apple Tvos 6.0
Apple Tvos 6.0.1
Apple Tvos 6.0.2
Apple Tvos
NA
CVE-2014-2234
A certain Apple patch for OpenSSL in Apple OS X 10.9.2 and previous versions uses a Trust Evaluation Agent (TEA) feature without terminating certain TLS/SSL handshakes as specified in the SSL_CTX_set_verify callback function's documentation, which allows remote malicious use...
Apple Mac Os X
NA
CVE-2014-1254
Apple Type Services (ATS) in Apple OS X prior to 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Type 1 font that is embedded in a document.
Apple Mac Os X 10.8.3
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
NA
CVE-2014-1255
Apple Type Services (ATS) in Apple OS X prior to 10.9.2 does not properly validate calls to the free function, which allows malicious users to bypass the App Sandbox protection mechanism via crafted Mach messages.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1261
Integer signedness error in CoreText in Apple OS X prior to 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted Unicode font.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1258
Heap-based buffer overflow in CoreAnimation in Apple OS X prior to 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted image.
Apple Mac Os X 10.8.3
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
NA
CVE-2014-1263
curl and libcurl 7.27.0 up to and including 7.35.0, when using the SecureTransport/Darwinssl backend, as used in in Apple OS X 10.9.x prior to 10.9.2, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of ...
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1264
Finder in Apple OS X prior to 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1265
The systemsetup program in the Date and Time subsystem in Apple OS X prior to 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock.
Apple Mac Os X 10.8.3
Apple Mac Os X Server 10.7.3
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.5
Apple Mac Os X Server 10.7.2
Apple Mac Os X 10.7.2
Apple Mac Os X 10.9
Apple Mac Os X 10.8.4
Apple Mac Os X 10.7.5
Apple Mac Os X 10.7.3
Apple Mac Os X 10.8.1
Apple Mac Os X 10.7.4
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
Apple Mac Os X 10.7.0
Apple Mac Os X Server 10.7.4
Apple Mac Os X 10.7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
malicious code
XML injection
CVE-2024-28020
CVE-2024-35252
CVE-2024-5833
CVE-2024-30066
injection
CVE-2024-23282
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »