Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mac_os_x vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-3793
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Sorenson movie file.
Apple Quicktime
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
NA
CVE-2010-3788
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 accesses uninitialized memory locations during processing of JP2 image data, which allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 file.
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Quicktime
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
NA
CVE-2013-7127
Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.
Apple Safari 6.0.5
Apple Mac Os X 10.8.5
Apple Mac Os X 10.7.5
NA
CVE-2008-3613
Finder in Apple Mac OS X 10.5.2 up to and including 10.5.4 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors involving a search for a remote disk on the local network.
Apple Mac Os X 10.5.2
Apple Mac Os X 10.5.3
Apple Mac Os X 10.5.4
NA
CVE-2007-2401
CRLF injection vulnerability in WebCore in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1, allows remote malicious users to inject arbitrary HTTP headers via LF characters in an XMLHttpRequest request, which are not filtered when serializing headers via the se...
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
1 EDB exploit
NA
CVE-2007-2399
WebKit in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1 performs an "invalid type conversion", which allows remote malicious users to execute arbitrary code via unspecified frame sets that trigger memory corruption.
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
NA
CVE-2007-3184
Cisco Trust Agent (CTA) prior to 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) produces a user notification mes...
Apple Mac Os X
NA
CVE-2010-1800
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle malicious users to redirect a connection and obtain sensitive information via crafted responses.
Apple Cfnetwork
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
NA
CVE-2010-1801
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file.
Apple Coregraphics
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.5.8
NA
CVE-2010-1808
Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document.
Apple Apple Type Services
Apple Mac Os X Server 10.5.8
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
Apple Mac Os X 10.5.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »