Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x server 10.4.11 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-3637
The Hash-based Message Authentication Code (HMAC) provider in Java on Apple Mac OS X 10.4.11, 10.5.4, and 10.5.5 uses an uninitialized variable, which allows remote malicious users to execute arbitrary code via a crafted applet, related to an "error checking issue."
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.5.5
Apple Mac Os X Server 10.5.5
Apple Mac Os X Server 10.5.4
Apple Mac Os X 10.4.11
Apple Mac Os X 10.5.4
6.3
CVSSv2
CVE-2008-3611
Login Window in Apple Mac OS X 10.4.11 does not clear the current password when a user makes a password-change attempt that is denied by policy, which allows opportunistic, physically proximate malicious users to bypass authentication and change this user's password by later...
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
4.9
CVSSv2
CVE-2008-2312
Network Preferences in Apple Mac OS X 10.4.11 stores PPP passwords in cleartext in a world-readable file, which allows local users to obtain sensitive information by reading this file.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
4.6
CVSSv2
CVE-2008-2324
The Repair Permissions tool in Disk Utility in Apple Mac OS X 10.4.11 adds the setuid bit to the emacs executable file, which allows local users to gain privileges by executing commands within emacs.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
1.9
CVSSv2
CVE-2008-0049
AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged applications.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
5
CVSSv2
CVE-2008-0050
CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.4.11
6.9
CVSSv2
CVE-2008-0051
Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11 might allow local users to execute arbitrary code via crafted time zone data.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0052
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote malicious users to force Safari users into opening an .ief file in AppleWorks, even when the "Open 'Safe' files" preference is set.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
7.2
CVSSv2
CVE-2008-0055
Foundation in Apple Mac OS X 10.4.11 creates world-writable directories while NSFileManager copies files recursively and only modifies the permissions afterward, which allows local users to modify copied files to cause a denial of service and possibly gain privileges.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0057
Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote malicious users to execute arbitrary code via a crafted serialized property list.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »