Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.4.10 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2406
Quartz Composer on Apple Mac OS X 10.4.10 does not initialize a certain object pointer, which might allow user-assisted remote malicious users to execute arbitrary code via a crafted Quartz Composer file.
Apple Quartz Composer
NA
CVE-2007-4692
The tabbed browsing feature in Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 up to and including 10.4.10, allows remote malicious users to spoof HTTP authentication for other sites and possibly conduct phishing attacks by causing an authentication sheet to...
Apple Safari
Apple Safari 3.0
Apple Safari 3.0.2
NA
CVE-2007-3745
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 contains an unsafe interface that is exposed by JDirect, which allows remote malicious users to free arbitrary memory and thereby execute arbitrary code.
Apple Core Audio Technologies
NA
CVE-2007-2409
Cross-domain vulnerability in WebCore on Apple Mac OS X 10.3.9 and 10.4.10 allows remote malicious users to obtain sensitive information via a popup window, which is able to read the current URL of the parent window.
Apple Webcore
NA
CVE-2007-2410
WebCore on Apple Mac OS X 10.3.9 and 10.4.10 retains properties of certain global objects when a new URL is visited in the same window, which allows remote malicious users to conduct cross-site scripting (XSS) attacks.
Apple Webcore
NA
CVE-2007-3747
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not restrict object instantiation and manipulation to valid heap addresses, which allows remote malicious users to execute arbitrary code via a crafted applet.
Apple Ichat
NA
CVE-2007-3746
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not properly check the bounds of heap read and write operations, which allows remote malicious users to execute arbitrary code via a crafted applet.
Apple Ichat
NA
CVE-2007-3748
Buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in iChat on Apple Mac OS X 10.3.9 and 10.4.10 allows network-adjacent remote malicious users to execute arbitrary code via a crafted packet.
Apple Ichat
NA
CVE-2007-4698
Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 up to and including 10.4.10, allows remote malicious users to conduct cross-site scripting (XSS) attacks by causing JavaScript events to be associated with the wrong frame.
Apple Safari
NA
CVE-2007-3760
Cross-site scripting (XSS) vulnerability in Safari in Apple iPhone 1.1.1, and Safari 3 before Beta Update 3.0.4 on Windows and Mac OS X 10.4 up to and including 10.4.10, allows remote malicious users to inject arbitrary web script or HTML via frame tags.
Apple Safari
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »