Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mac_os_x vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3792
Integer signedness error in QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
Apple Quicktime
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.0
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
NA
CVE-2010-3793
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Sorenson movie file.
Apple Quicktime
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
NA
CVE-2013-7127
Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.
Apple Safari 6.0.5
Apple Mac Os X 10.8.5
Apple Mac Os X 10.7.5
NA
CVE-2008-3613
Finder in Apple Mac OS X 10.5.2 up to and including 10.5.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors involving a search for a remote disk on the local network.
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.4
NA
CVE-2007-2399
WebKit in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1 performs an "invalid type conversion", which allows remote malicious users to execute arbitrary code via unspecified frame sets that trigger memory corruption.
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
NA
CVE-2007-2401
CRLF injection vulnerability in WebCore in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1, allows remote malicious users to inject arbitrary HTTP headers via LF characters in an XMLHttpRequest request, which are not filtered when serializing headers via the se...
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
1 EDB exploit
NA
CVE-2007-3184
Cisco Trust Agent (CTA) prior to 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) produces a user notification mes...
Apple Mac Os X
NA
CVE-2010-1800
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle malicious users to redirect a connection and obtain sensitive information via crafted responses.
Apple Cfnetwork
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
NA
CVE-2010-1801
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file.
Apple Coregraphics
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.5.8
NA
CVE-2010-1808
Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document.
Apple Apple Type Services
Apple Mac Os X Server 10.5.8
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »