Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2008-3613

  • EPSS 0.3%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Finder in Apple Mac OS X 10.5.2 through 10.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving a search for a remote disk on the local network.

10

CVE-2008-3616

  • EPSS 1.07%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allow context-dependent attackers to cause a denial of service (application crash) or execute arbitrary code via vectors associated with "passing untrus...

5

CVE-2008-3617

  • EPSS 0.32%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Remote Management and Screen Sharing in Apple Mac OS X 10.5 through 10.5.4, when used to set a password for a VNC viewer, displays additional input characters beyond the maximum password length, which might make it easier for attackers to guess passw...

9

CVE-2008-3618

  • EPSS 0.6%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

The File Sharing pane in the Sharing preference pane in Apple Mac OS X 10.5 through 10.5.4 does not inform users that the complete contents of their own home directories are shared for their own use, which might allow attackers to leverage other vuln...

2.1

CVE-2008-3619

  • EPSS 0.05%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Time Machine in Apple Mac OS X 10.5 through 10.5.4 uses weak permissions for Time Machine Backup log files, which allows local users to obtain sensitive information by reading these files.

9.3

CVE-2008-3621

  • EPSS 3.67%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via vectors involving H.264 encoded media.

4.3

CVE-2008-3622

  • EPSS 0.45%
  • Published 16.09.2008 23:00:01
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5 through 10.5.4 allows remote attackers to inject arbitrary web script or HTML via an e-mail message that reaches a mailing-list archive, aka "persistent JavaScript injecti...

9.3

CVE-2008-2305

  • EPSS 8.71%
  • Published 16.09.2008 23:00:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to execute arbitrary code via a document containing a crafted font, related to "PostScript font names."

4.9

CVE-2008-2312

  • EPSS 0.07%
  • Published 16.09.2008 23:00:00
  • Last modified 09.04.2025 00:30:58

Network Preferences in Apple Mac OS X 10.4.11 stores PPP passwords in cleartext in a world-readable file, which allows local users to obtain sensitive information by reading this file.

1.9

CVE-2008-2329

  • EPSS 0.09%
  • Published 16.09.2008 23:00:00
  • Last modified 09.04.2025 00:30:58

Directory Services in Apple Mac OS X 10.5 through 10.5.4, when Active Directory is used, allows attackers to enumerate user names via wildcard characters in the Login Window.