Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mac_os_x_server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1374
Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 prior to 10.6.4, when AIM is used, allows remote malicious users to create arbitrary files via directory traversal sequences in an inline image-transfer operation.
Apple Mac Os X 10.5.8
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.1
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.5.8
NA
CVE-2010-3789
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted AVI file.
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Quicktime
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.4
NA
CVE-2010-3790
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file that causes an image sample transformation to scale a sprite outside a buffer...
Apple Quicktime
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.4
NA
CVE-2010-3791
Buffer overflow in QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
Apple Quicktime
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.0
NA
CVE-2010-3792
Integer signedness error in QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
Apple Quicktime
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.0
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.1
NA
CVE-2010-3793
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Sorenson movie file.
Apple Quicktime
Apple Mac Os X 10.6.3
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.1
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
NA
CVE-2010-3788
QuickTime in Apple Mac OS X 10.6.x prior to 10.6.5 accesses uninitialized memory locations during processing of JP2 image data, which allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 file.
Apple Mac Os X 10.6.0
Apple Mac Os X 10.6.2
Apple Mac Os X 10.6.1
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Quicktime
Apple Mac Os X Server 10.6.0
Apple Mac Os X Server 10.6.3
Apple Mac Os X Server 10.6.4
Apple Mac Os X Server 10.6.1
Apple Mac Os X Server 10.6.2
NA
CVE-2007-2401
CRLF injection vulnerability in WebCore in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1, allows remote malicious users to inject arbitrary HTTP headers via LF characters in an XMLHttpRequest request, which are not filtered when serializing headers via the se...
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
1 EDB exploit
NA
CVE-2007-2399
WebKit in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone prior to 1.0.1 performs an "invalid type conversion", which allows remote malicious users to execute arbitrary code via unspecified frame sets that trigger memory corruption.
Apple Mac Os X Server 10.4.9
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.3.9
Apple Mac Os X 10.3.9
NA
CVE-2010-1800
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle malicious users to redirect a connection and obtain sensitive information via crafted responses.
Apple Cfnetwork
Apple Mac Os X 10.6.3
Apple Mac Os X Server 10.6.3
Apple Mac Os X 10.6.4
Apple Mac Os X Server 10.6.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcoded
arbitrary code
CVE-2024-2404
CVE-2024-21111
CVE-2024-28627
CVE-2024-4073
information disclosure
CVE-2024-32780
CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »