Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.4.11 vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2008-0990
notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notifications that prevent other applications from receiving notifications.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
4.3
CVSSv2
CVE-2008-0988
Off-by-one error in the Libsystem strnstr API in libc on Apple Mac OS X 10.4.11 allows context-dependent malicious users to cause a denial of service (crash) via crafted arguments that trigger a buffer over-read.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0056
Stack-based buffer overflow in Foundation in Apple Mac OS X 10.4.11 allows context-dependent malicious users to execute arbitrary code via a "long pathname with an unexpected structure" that triggers the overflow in NSFileManager.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
4.6
CVSSv2
CVE-2008-2324
The Repair Permissions tool in Disk Utility in Apple Mac OS X 10.4.11 adds the setuid bit to the emacs executable file, which allows local users to gain privileges by executing commands within emacs.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0048
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows context-dependent malicious users to execute arbitrary code via the a long file name to the NSDocument API.
Apple Mac Os X Server 10.4.11
Apple Mac Os X 10.4.11
6.4
CVSSv2
CVE-2008-0054
Foundation in Apple Mac OS X 10.4.11 might allow context-dependent malicious users to execute arbitrary code via a malformed selector name to the NSSelectorFromString API, which causes an "unexpected selector" to be used.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0057
Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote malicious users to execute arbitrary code via a crafted serialized property list.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
5
CVSSv2
CVE-2008-1571
Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X prior to 10.5 allows remote malicious users to read arbitrary files via directory traversal sequences in the URI.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
6.8
CVSSv2
CVE-2008-0052
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote malicious users to force Safari users into opening an .ief file in AppleWorks, even when the "Open 'Safe' files" preference is set.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
1.9
CVSSv2
CVE-2008-0049
AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged applications.
Apple Mac Os X 10.4.11
Apple Mac Os X Server 10.4.11
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »