Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apple mac os x 10.8.2 vulnerabilities and exploits

(subscribe to this query)
7.1
CVSSv2
CVE-2013-5172
The kernel in Apple Mac OS X prior to 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent malicious users to cause a denial of service (panic) by triggering a digest operation, as demonstrated by an IPSec connection.
Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os XApple Mac Os X 10.8.0Apple Mac Os X 10.8.5
4.9
CVSSv2
CVE-2013-5174
Integer signedness error in the kernel in Apple Mac OS X prior to 10.9 allows local users to cause a denial of service (system crash) via a crafted tty read operation.
Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.0Apple Mac Os X
4.9
CVSSv2
CVE-2013-5176
The kernel in Apple Mac OS X prior to 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service (system hang) by triggering a truncation error.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os XApple Mac Os X 10.8.1
5
CVSSv2
CVE-2013-5178
LaunchServices in Apple Mac OS X prior to 10.9 does not properly restrict Unicode characters in filenames, which allows context-dependent malicious users to spoof file extensions via a crafted character sequence.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X
4.3
CVSSv2
CVE-2013-5180
The srandomdev function in Libc in Apple Mac OS X prior to 10.9, when the kernel random-number generator is unavailable, produces predictable values instead of the intended random values, which makes it easier for context-dependent malicious users to defeat cryptographic protecti...
Apple Mac Os X 10.8.1Apple Mac Os XApple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.0
5
CVSSv2
CVE-2013-5182
Mail in Apple Mac OS X prior to 10.9 allows remote malicious users to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned message.
Apple Mac Os X 10.8.0Apple Mac Os X 10.8.5Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X
2.6
CVSSv2
CVE-2013-5183
Mail in Apple Mac OS X prior to 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os XApple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.0Apple Mac Os X 10.8.5
4.3
CVSSv2
CVE-2013-5185
The ldapsearch command-line program in OpenLDAP in Apple Mac OS X prior to 10.9 does not properly process the minssf configuration setting, which allows remote malicious users to obtain sensitive information by leveraging unintended weak encryption and sniffing the network.
Apple Mac Os XApple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5
2.1
CVSSv2
CVE-2013-5186
Power Management in Apple Mac OS X prior to 10.9 does not properly handle the interaction between locking and power assertions, which allows physically proximate malicious users to obtain sensitive information by reading a screen that should have transitioned into the locked stat...
Apple Mac Os X 10.8.5Apple Mac Os X 10.8.0Apple Mac Os X 10.8.1Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X
4.3
CVSSv2
CVE-2013-5190
Smart Card Services in Apple Mac OS X prior to 10.9 does not properly implement certificate-revocation checks, which allows remote malicious users to cause a denial of service (Smart Card usage outage) by interfering with the revocation-check procedure.
Apple Mac Os X 10.8.2Apple Mac Os X 10.8.3Apple Mac Os X 10.8.4Apple Mac Os X 10.8.5Apple Mac Os X 10.8.1Apple Mac Os XApple Mac Os X 10.8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook