Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apple mac os x 10.8.3 vulnerabilities and exploits

(subscribe to this query)
4.9
CVSSv2
CVE-2013-5166
The Bluetooth USB host controller in Apple Mac OS X prior to 10.9 prematurely deletes interfaces, which allows local users to cause a denial of service (system crash) via a crafted application.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.5Apple Mac Os X 10.8.4Apple Mac Os X
5
CVSSv2
CVE-2013-5167
CFNetwork in Apple Mac OS X prior to 10.9 does not properly support Safari's deletion of session cookies in response to a reset operation, which makes it easier for remote web servers to track users via Set-Cookie HTTP headers.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os XApple Mac Os X 10.8.5
1.9
CVSSv2
CVE-2013-5169
CoreGraphics in Apple Mac OS X prior to 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.5Apple Mac Os X 10.8.4Apple Mac Os X
6.8
CVSSv2
CVE-2013-5170
Buffer underflow in CoreGraphics in Apple Mac OS X prior to 10.9 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.
Apple Mac Os X 10.8.5Apple Mac Os XApple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.0
4.9
CVSSv2
CVE-2013-5174
Integer signedness error in the kernel in Apple Mac OS X prior to 10.9 allows local users to cause a denial of service (system crash) via a crafted tty read operation.
Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.0Apple Mac Os X
4.9
CVSSv2
CVE-2013-5176
The kernel in Apple Mac OS X prior to 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service (system hang) by triggering a truncation error.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os XApple Mac Os X 10.8.1
5
CVSSv2
CVE-2013-5178
LaunchServices in Apple Mac OS X prior to 10.9 does not properly restrict Unicode characters in filenames, which allows context-dependent malicious users to spoof file extensions via a crafted character sequence.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X
7.5
CVSSv2
CVE-2013-5179
App Sandbox in Apple Mac OS X prior to 10.9 allows malicious users to bypass intended sandbox restrictions via a crafted app that uses the LaunchServices interface to specify process arguments.
Apple Mac Os X 10.8.0Apple Mac Os XApple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3
5
CVSSv2
CVE-2013-5182
Mail in Apple Mac OS X prior to 10.9 allows remote malicious users to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned message.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.5Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X
2.6
CVSSv2
CVE-2013-5183
Mail in Apple Mac OS X prior to 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os XApple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.0Apple Mac Os X 10.8.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injectionCVE-2024-30983CVE-2023-4235CVE-2024-21338privilegeencryptionCVE-2023-4232CVE-2024-31497CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook