Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2008-0048

  • EPSS 2.23%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via the a long file name to the NSDocument API.

1.9

CVE-2008-0049

  • EPSS 0.19%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged app...

5

CVE-2008-0050

  • EPSS 0.69%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.

6.9

CVE-2008-0051

  • EPSS 0.06%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11 might allow local users to execute arbitrary code via crafted time zone data.

6.8

CVE-2008-0057

  • EPSS 2.56%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via a crafted serialized property list.

6.8

CVE-2008-0997

  • EPSS 2.72%
  • Published 18.03.2008 22:44:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is no...

9.3

CVE-2008-0888

  • EPSS 21.94%
  • Published 17.03.2008 21:44:00
  • Last modified 01.05.2025 15:33:00

The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a ...

4.3

CVE-2008-0037

  • EPSS 0.31%
  • Published 12.02.2008 20:00:00
  • Last modified 09.04.2025 00:30:58

X11 in Apple Mac OS X 10.5 through 10.5.1 does not properly handle when the "Allow connections from network client" preference is disabled, which allows remote attackers to bypass intended access restrictions and connect to the X server.

1.9

CVE-2008-0038

  • EPSS 0.07%
  • Published 12.02.2008 20:00:00
  • Last modified 09.04.2025 00:30:58

Launch Services in Apple Mac OS X 10.5 through 10.5.1 allows an uninstalled application to be launched if it is in a Time Machine backup, which might allow local users to bypass intended security restrictions or exploit vulnerabilities in the applica...

10

CVE-2008-0040

  • EPSS 6.94%
  • Published 12.02.2008 20:00:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in NFS in Apple Mac OS X 10.5 through 10.5.1 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via unknown vectors related to mbuf chains that trigger memory corruption.