Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.1.5 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-0085
Unknown vulnerability in the Mail application for Mac OS X 10.1.5 and 10.2.8 with unknown impact, a different vulnerability than CVE-2004-0086.
Apple Mac Os X 10.2.8
Apple Mac Os X 10.1.5
2.1
CVSSv2
CVE-2003-0876
Finder in Mac OS X 10.2.8 and previous versions sets global read/write/execute permissions on directories when they are dragged (copied) from a mounted volume such as a disk image (DMG), which could cause the directories to have less restrictive permissions than intended.
Apple Mac Os X 10.0
Apple Mac Os X 10.0.1
Apple Mac Os X 10.1.4
Apple Mac Os X 10.1.5
Apple Mac Os X 10.2.6
Apple Mac Os X 10.2.7
Apple Mac Os X Server 10.2.4
Apple Mac Os X Server 10.2.5
Apple Mac Os X Server 10.2.6
Apple Mac Os X 10.1.2
Apple Mac Os X 10.1.3
Apple Mac Os X 10.2.4
Apple Mac Os X 10.2.5
Apple Mac Os X Server 10.2.2
Apple Mac Os X Server 10.2.3
Apple Mac Os X 10.0.2
Apple Mac Os X 10.0.3
Apple Mac Os X 10.0.4
Apple Mac Os X 10.2
Apple Mac Os X 10.2.1
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.0
4.6
CVSSv2
CVE-2003-0877
Mac OS X prior to 10.3 with core files enabled allows local users to overwrite arbitrary files and read core files via a symlink attack on core files that are created with predictable names in the /cores directory.
Apple Mac Os X 10.0.3
Apple Mac Os X 10.0.4
Apple Mac Os X 10.2
Apple Mac Os X 10.2.1
Apple Mac Os X 10.0.1
Apple Mac Os X 10.0.2
Apple Mac Os X 10.1.4
Apple Mac Os X 10.1.5
Apple Mac Os X 10.2.6
Apple Mac Os X 10.2.7
Apple Mac Os X 10.2.8
Apple Mac Os X 10.1
Apple Mac Os X 10.1.1
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2.3
Apple Mac Os X 10.0
Apple Mac Os X 10.1.2
Apple Mac Os X 10.1.3
Apple Mac Os X 10.2.4
Apple Mac Os X 10.2.5
7.2
CVSSv2
CVE-2003-0171
DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a directory containing a malicious touch program.
Apple Mac Os X 10.0.2
Apple Mac Os X 10.0.4
Apple Mac Os X 10.1.4
Apple Mac Os X 10.2
Apple Mac Os X 10.2.2
Apple Mac Os X Server 10.2.1
Apple Mac Os X Server 10.2.3
Apple Mac Os X 10.1
Apple Mac Os X 10.1.1
Apple Mac Os X 10.1.2
Apple Mac Os X 10.1.3
Apple Mac Os X 10.0
Apple Mac Os X 10.2.3
Apple Mac Os X 10.2.4
Apple Mac Os X Server 10.0
Apple Mac Os X Server 10.2
Apple Mac Os X 10.0.1
Apple Mac Os X 10.0.3
Apple Mac Os X 10.1.5
Apple Mac Os X 10.2.1
Apple Mac Os X Server 10.2.2
Apple Mac Os X Server 10.2.4
1 EDB exploit
6.4
CVSSv2
CVE-2003-0198
Mac OS X prior to 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files.
Apple Mac Os X 10.0.4
Apple Mac Os X 10.1.1
Apple Mac Os X 10.2.1
Apple Mac Os X 10.2.3
Apple Mac Os X Server 10.2.4
Apple Mac Os X 10.0
Apple Mac Os X 10.0.1
Apple Mac Os X 10.0.2
Apple Mac Os X Server 10.0
Apple Mac Os X Server 10.2
Apple Mac Os X Server 10.2.1
Apple Mac Os X Server 10.2.2
Apple Mac Os X Server 10.2.3
Apple Mac Os X 10.1.2
Apple Mac Os X 10.1.3
Apple Mac Os X 10.1.4
Apple Mac Os X 10.1.5
Apple Mac Os X 10.0.3
Apple Mac Os X 10.1
Apple Mac Os X 10.2.2
Apple Mac Os X 10.2.4
5
CVSSv2
CVE-2002-2326
The default configuration of Mail.app in Mac OS X 10.0 up to and including 10.0.4 and 10.1 up to and including 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote malicious users to obtain passwords by sniffing network t...
Apple Mac Os X 10.0
Apple Mac Os X 10.1.2
Apple Mac Os X 10.1.4
Apple Mac Os X 10.1.5
Apple Mac Os X 10.0.2
Apple Mac Os X 10.0.3
Apple Mac Os X 10.0.4
Apple Mac Os X 10.1
Apple Mac Os X 10.0.1
Apple Mac Os X 10.1.1
Apple Mac Os X 10.1.3
5
CVSSv2
CVE-2002-1265
The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote malicious users to cause a denial of service (hang).
Gnu Glibc 2.0.6
Gnu Glibc 2.1
Gnu Glibc 2.2.1
Gnu Glibc 2.2.2
Sgi Irix 6.5.1
Sgi Irix 6.5.10
Sgi Irix 6.5.16f
Sgi Irix 6.5.16m
Sgi Irix 6.5.6
Sgi Irix 6.5.7
Gnu Glibc 2.0.4
Gnu Glibc 2.0.5
Gnu Glibc 2.1.3.10
Gnu Glibc 2.2
Sgi Irix 2.3.1
Sgi Irix 6.5
Sgi Irix 6.5.15f
Sgi Irix 6.5.15m
Sgi Irix 6.5.4
Sgi Irix 6.5.5
Gnu Glibc 2.0.1
Gnu Glibc 2.0.2
7.5
CVSSv2
CVE-2002-0655
OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow malicious users to cause a denial of service and possibly execute arbitrary code.
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.6a
Oracle Application Server 1.0.2
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.7
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5
Oracle Corporate Time Outlook Connector 3.1.1
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.0.1
Oracle Application Server 1.0.2.2
Openssl Openssl 0.9.6
Openssl Openssl 0.9.6b
Oracle Application Server
Oracle Application Server 1.0.2.1s
Oracle Corporate Time Outlook Connector 3.1
Oracle Http Server 9.2.0
7.5
CVSSv2
CVE-2002-0656
Buffer overflows in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allow remote malicious users to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Oracle Application Server 1.0.2.1s
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.7
Oracle Application Server 1.0.2
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Http Server 9.0.1
Openssl Openssl 0.9.5
Openssl Openssl 0.9.6
Oracle Application Server
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.2.0
1 EDB exploit
5
CVSSv2
CVE-2002-0659
The ASN1 library in OpenSSL 0.9.6d and previous versions, and 0.9.7-beta2 and previous versions, allows remote malicious users to cause a denial of service via invalid encodings.
Openssl Openssl 0.9.1c
Openssl Openssl 0.9.2b
Openssl Openssl 0.9.3
Oracle Application Server 1.0.2.1s
Oracle Application Server 1.0.2.2
Oracle Corporate Time Outlook Connector 3.1
Oracle Corporate Time Outlook Connector 3.1.1
Openssl Openssl 0.9.6a
Openssl Openssl 0.9.6b
Openssl Openssl 0.9.6c
Openssl Openssl 0.9.6d
Openssl Openssl 0.9.4
Openssl Openssl 0.9.5a
Openssl Openssl 0.9.7
Oracle Application Server 1.0.2
Oracle Corporate Time Outlook Connector 3.1.2
Oracle Http Server 9.0.1
Openssl Openssl 0.9.5
Openssl Openssl 0.9.6
Oracle Application Server
Oracle Corporate Time Outlook Connector 3.3
Oracle Http Server 9.2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
NEXT »