Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apple mac os x server 10.4.11 vulnerabilities and exploits

(subscribe to this query)
9.3
CVSSv2
CVE-2008-3637
The Hash-based Message Authentication Code (HMAC) provider in Java on Apple Mac OS X 10.4.11, 10.5.4, and 10.5.5 uses an uninitialized variable, which allows remote malicious users to execute arbitrary code via a crafted applet, related to an "error checking issue."
Apple Mac Os X Server 10.4.11Apple Mac Os X 10.5.5Apple Mac Os X Server 10.5.5Apple Mac Os X Server 10.5.4Apple Mac Os X 10.4.11Apple Mac Os X 10.5.4
6.3
CVSSv2
CVE-2008-3611
Login Window in Apple Mac OS X 10.4.11 does not clear the current password when a user makes a password-change attempt that is denied by policy, which allows opportunistic, physically proximate malicious users to bypass authentication and change this user's password by later...
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0997
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote malicious users to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is not properly handled when ...
Apple Mac Os X Server 10.4.11Apple Mac Os X 10.4.11
9.3
CVSSv2
CVE-2008-1028
Unspecified vulnerability in AppKit in Apple Mac OS X prior to 10.5 allows user-assisted remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted document file, as demonstrated by opening the document with TextEdit.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
4.3
CVSSv2
CVE-2008-0988
Off-by-one error in the Libsystem strnstr API in libc on Apple Mac OS X 10.4.11 allows context-dependent malicious users to cause a denial of service (crash) via crafted arguments that trigger a buffer over-read.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
4.4
CVSSv2
CVE-2008-0990
notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notifications that prevent other applications from receiving notifications.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
7.1
CVSSv2
CVE-2008-0045
Unspecified vulnerability in AFP Server in Apple Mac OS X 10.4.11 allows remote malicious users to bypass cross-realm authentication via unknown manipulations of Kerberos principal realm names.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0048
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows context-dependent malicious users to execute arbitrary code via the a long file name to the NSDocument API.
Apple Mac Os X Server 10.4.11Apple Mac Os X 10.4.11
6.8
CVSSv2
CVE-2008-0052
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote malicious users to force Safari users into opening an .ief file in AppleWorks, even when the "Open 'Safe' files" preference is set.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
6.4
CVSSv2
CVE-2008-0054
Foundation in Apple Mac OS X 10.4.11 might allow context-dependent malicious users to execute arbitrary code via a malformed selector name to the NSSelectorFromString API, which causes an "unexpected selector" to be used.
Apple Mac Os X 10.4.11Apple Mac Os X Server 10.4.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook