Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple terminal vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2005-2511
Unknown vulnerability in Mac OS X 10.4.2 and previous versions, when using Kerberos authentication with LDAP, allows malicious users to gain access to a root Terminal window.
Apple Mac Os X 10.4.2
Apple Mac Os X Server 10.4.2
605
VMScore
CVE-2008-0042
Argument injection vulnerability in Terminal.app in Terminal in Apple Mac OS X 10.4.11 and 10.5 up to and including 10.5.1 allows remote malicious users to execute arbitrary code via unspecified URL schemes.
Apple Mac Os X 10.5
Apple Mac Os X 10.5.1
Apple Mac Os X 10.4.11
187
VMScore
CVE-2016-4755
Terminal in Apple OS X prior to 10.12 uses weak permissions for the .bash_history and .bash_session files, which allows local users to obtain sensitive information via unspecified vectors.
Apple Mac Os X
605
VMScore
CVE-2018-4106
An issue exists in certain Apple products. macOS prior to 10.13.4 is affected. The issue involves the Bracketed Paste Mode of the "Terminal" component. It allows user-assisted malicious users to inject arbitrary commands within pasted content.
Apple Mac Os X
445
VMScore
CVE-2015-5883
The bidirectional text-display and text-selection implementations in Terminal in Apple OS X prior to 10.11 interpret directional override formatting characters differently, which allows remote malicious users to spoof the content of a text document via a crafted character sequenc...
Apple Mac Os X
515
VMScore
CVE-2006-0848
The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted malicious users to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the...
Apple Mac Os X Server 10.4.5
Apple Mac Os X 10.4.5
1 EDB exploit
392
VMScore
CVE-2013-2777
sudo prior to 1.7.10p5 and 1.8.x prior to 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session w...
Apple Mac Os X
Todd Miller Sudo 1.7.9p1
Todd Miller Sudo 1.7.9
Todd Miller Sudo 1.7.6
Todd Miller Sudo 1.7.5
Todd Miller Sudo 1.7.4p6
Todd Miller Sudo 1.7.3b1
Todd Miller Sudo 1.7.2p7
Todd Miller Sudo 1.7.1
Todd Miller Sudo 1.6.4
Todd Miller Sudo 1.7.10
Todd Miller Sudo 1.7.6p2
Todd Miller Sudo 1.7.6p1
Todd Miller Sudo 1.7.4p1
Todd Miller Sudo 1.7.4p4
Todd Miller Sudo 1.7.2
Todd Miller Sudo 1.7.2p1
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6.9p21
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.7.10p1
392
VMScore
CVE-2013-1776
sudo 1.3.5 up to and including 1.7.10 and 1.8.0 up to and including 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vector...
Apple Mac Os X
Todd Miller Sudo 1.8.1p2
Todd Miller Sudo 1.8.2
Todd Miller Sudo 1.8.4p4
Todd Miller Sudo 1.8.4p5
Todd Miller Sudo 1.8.3
Todd Miller Sudo 1.8.3p1
Todd Miller Sudo 1.8.3p2
Todd Miller Sudo 1.8.5
Todd Miller Sudo 1.8.0
Todd Miller Sudo 1.8.4
Todd Miller Sudo 1.8.4p1
Todd Miller Sudo 1.8.1
Todd Miller Sudo 1.8.1p1
Todd Miller Sudo 1.8.4p2
Todd Miller Sudo 1.8.4p3
Todd Miller Sudo 1.7.8p1
Todd Miller Sudo 1.7.8
Todd Miller Sudo 1.7.4p2
Todd Miller Sudo 1.7.4p3
Todd Miller Sudo 1.7.4
Todd Miller Sudo 1.7.2p4
392
VMScore
CVE-2013-2776
sudo 1.3.5 up to and including 1.7.10p5 and 1.8.0 up to and including 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissi...
Todd Miller Sudo 1.7.8p1
Todd Miller Sudo 1.7.8
Todd Miller Sudo 1.7.4p3
Todd Miller Sudo 1.7.4
Todd Miller Sudo 1.7.2p4
Todd Miller Sudo 1.7.7
Todd Miller Sudo 1.7.6p2
Todd Miller Sudo 1.7.4p1
Todd Miller Sudo 1.7.4p4
Todd Miller Sudo 1.7.2p3
Todd Miller Sudo 1.7.2
Todd Miller Sudo 1.6.4p2
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.3.5
Todd Miller Sudo 1.7.10
Todd Miller Sudo 1.7.2p2
Todd Miller Sudo 1.6.9p23
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.9p22
Todd Miller Sudo 1.6.2p3
700
VMScore
CVE-2013-1775
sudo 1.6.0 up to and including 1.7.10p6 and sudo 1.8.0 up to and including 1.8.6p6 allows local users or physically proximate malicious users to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp t...
Todd Miller Sudo 1.6.9p21
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.6
Todd Miller Sudo 1.6.9p22
Todd Miller Sudo 1.6.2p3
Todd Miller Sudo 1.6.4
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.6.2
Todd Miller Sudo 1.6.7
Todd Miller Sudo 1.6.9p23
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.3 P7
Todd Miller Sudo 1.6.9
Todd Miller Sudo 1.6.3
Todd Miller Sudo 1.6.4p2
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6
Todd Miller Sudo 1.6.8
Todd Miller Sudo 1.8.1p2
Todd Miller Sudo 1.8.2
Todd Miller Sudo 1.8.4p3
2 EDB exploits
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »