Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.6.4 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2010-1381
The default configuration of SMB File Server in Apple Mac OS X 10.5.8, and 10.6 prior to 10.6.4, enables support for wide links, which allows remote authenticated users to access arbitrary files via vectors involving symbolic links. NOTE: this might overlap CVE-2010-0926.
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.5.8
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
4.3
CVSSv2
CVE-2012-3720
Mobile Accounts in Apple Mac OS X prior to 10.7.5 and 10.8.x prior to 10.8.2 saves password hashes for external-account use even if external accounts are not enabled, which might allow remote malicious users to determine passwords via unspecified access to a mobile account.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X 10.6.8
Apple Mac Os X 10.2.5
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X 10.2.8
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.0
Apple Mac Os X 10.4.1
Apple Mac Os X 10.1
Apple Mac Os X 10.5.5
Apple Mac Os X
Apple Mac Os X 10.6.3
Apple Mac Os X 10.5.1
Apple Mac Os X 10.0.1
Apple Mac Os X 10.4.10
Apple Mac Os X 10.7.2
5
CVSSv2
CVE-2012-3721
Profile Manager in Apple Mac OS X prior to 10.7.5 does not properly perform authentication for the Device Management private interface, which allows malicious users to enumerate managed devices via unspecified vectors.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X 10.6.8
Apple Mac Os X 10.2.5
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X 10.2.8
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.0
Apple Mac Os X 10.4.1
Apple Mac Os X 10.1
Apple Mac Os X 10.5.5
Apple Mac Os X
Apple Mac Os X 10.6.3
Apple Mac Os X 10.5.1
Apple Mac Os X 10.0.1
Apple Mac Os X 10.4.10
Apple Mac Os X 10.7.2
4.3
CVSSv2
CVE-2010-1373
Cross-site scripting (XSS) vulnerability in Help Viewer in Apple Mac OS X 10.6 prior to 10.6.4 allows remote malicious users to inject arbitrary web script or HTML via a crafted help: URL, related to "URL parameters in HTML content."
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
7.5
CVSSv2
CVE-2010-1380
Integer overflow in the cgtexttops CUPS filter in Printing in Apple Mac OS X 10.6 prior to 10.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors related to page sizes.
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.0
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
6.8
CVSSv2
CVE-2011-0229
Apple Type Services (ATS) in Apple Mac OS X up to and including 10.6.8 does not properly handle embedded Type 1 fonts, which allows remote malicious users to execute arbitrary code via a crafted document that triggers an out-of-bounds memory access.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.1.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.10
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.1.2
4.6
CVSSv2
CVE-2011-3214
IOGraphics in Apple Mac OS X up to and including 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate malicious users to bypass the password requirement via unspecified vectors.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.1.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.10
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.1.2
6.8
CVSSv2
CVE-2011-3217
MediaKit in Apple Mac OS X up to and including 10.6.8 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.1.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.10
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.1.2
2.6
CVSSv2
CVE-2011-3218
The "Save for Web" selection in QuickTime Player in Apple Mac OS X up to and including 10.6.8 exports HTML documents that contain an http link to a script file, which allows man-in-the-middle malicious users to conduct cross-site scripting (XSS) attacks by spoofing the ...
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.1.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.10
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.1.2
2.6
CVSSv2
CVE-2011-3224
The User Documentation component in Apple Mac OS X up to and including 10.6.8 uses http sessions for updates to App Store help information, which allows man-in-the-middle malicious users to execute arbitrary code by spoofing the http server.
Apple Mac Os X 10.5.8
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.4.3
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.1.5
Apple Mac Os X Server 10.1
Apple Mac Os X Server 10.3.0
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X 10.6.7
Apple Mac Os X 10.2.7
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.1.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.0
Apple Mac Os X Server 10.5.2
Apple Mac Os X Server 10.4.10
Apple Mac Os X 10.2.1
Apple Mac Os X 10.5.6
Apple Mac Os X Server 10.4.9
Apple Mac Os X Server 10.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »