Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.9 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1255
Apple Type Services (ATS) in Apple OS X prior to 10.9.2 does not properly validate calls to the free function, which allows malicious users to bypass the App Sandbox protection mechanism via crafted Mach messages.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1261
Integer signedness error in CoreText in Apple OS X prior to 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted Unicode font.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1263
curl and libcurl 7.27.0 up to and including 7.35.0, when using the SecureTransport/Darwinssl backend, as used in in Apple OS X 10.9.x prior to 10.9.2, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of ...
Apple Mac Os X 10.9
Apple Mac Os X
NA
CVE-2014-1264
Finder in Apple OS X prior to 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1262
Apple Type Services (ATS) in Apple OS X prior to 10.9.2 allows malicious users to bypass the App Sandbox protection mechanism via crafted Mach messages that trigger memory corruption.
Apple Mac Os X 10.9
Apple Mac Os X
NA
CVE-2014-1322
The kernel in Apple OS X up to and including 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mechanism by reading an unspecified attribute of the object.
Apple Mac Os X 10.9
Apple Mac Os X
Apple Mac Os X 10.9.1
1 EDB exploit
1 Github repository
NA
CVE-2014-1316
Heimdal, as used in Apple OS X up to and including 10.9.2, allows remote malicious users to cause a denial of service (abort and daemon exit) via ASN.1 data encountered in the Kerberos 5 protocol.
Apple Mac Os X 10.9.1
Apple Mac Os X
Apple Mac Os X 10.9
NA
CVE-2014-1315
Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x up to and including 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a URL.
Apple Mac Os X 10.9
Apple Mac Os X 10.9.1
Apple Mac Os X 10.9.2
NA
CVE-2014-1319
Buffer overflow in ImageIO in Apple OS X 10.9.x up to and including 10.9.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.
Apple Mac Os X 10.9.2
Apple Mac Os X 10.9.1
Apple Mac Os X 10.9
NA
CVE-2014-1321
Power Management in Apple OS X 10.9.x up to and including 10.9.2 allows physically proximate malicious users to bypass an intended transition into the locked-screen state by touching (1) a key or (2) the trackpad during a lid-close action.
Apple Mac Os X 10.9.2
Apple Mac Os X 10.9.1
Apple Mac Os X 10.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »