Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2007-3828

  • EPSS 2.71%
  • Published 17.07.2007 21:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in mDNSResponder in Apple Mac OS X allows remote attackers to execute arbitrary code via unspecified vectors, a related issue to CVE-2007-2386.

9.8

CVE-2007-3798

Exploit
  • EPSS 72.12%
  • Published 16.07.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

9.3

CVE-2007-2399

  • EPSS 15.25%
  • Published 25.06.2007 19:30:00
  • Last modified 09.04.2025 00:30:58

WebKit in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone before 1.0.1 performs an "invalid type conversion", which allows remote attackers to execute arbitrary code via unspecified frame sets that trigger memory corruption.

4.3

CVE-2007-2401

  • EPSS 3.18%
  • Published 25.06.2007 19:30:00
  • Last modified 09.04.2025 00:30:58

CRLF injection vulnerability in WebCore in Apple Mac OS X 10.3.9, 10.4.9 and later, and iPhone before 1.0.1, allows remote attackers to inject arbitrary HTTP headers via LF characters in an XMLHttpRequest request, which are not filtered when serializ...

7.2

CVE-2007-3184

Exploit
  • EPSS 0.09%
  • Published 12.06.2007 21:30:00
  • Last modified 09.04.2025 00:30:58

Cisco Trust Agent (CTA) before 2.1.104.0, when running on MacOS X, allows attackers with physical access to bypass authentication and modify System Preferences, including passwords, by invoking the Apple Menu when the Access Control Server (ACS) prod...

6.8

CVE-2007-0740

  • EPSS 0.71%
  • Published 24.05.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

Alias Manager in Apple Mac OS X 10.3.9 and 10.4.9 does not display files with the same name in mounted disk images that have the same name, which might allow user-assisted attackers to trick a user into executing malicious files.

9.3

CVE-2007-0750

  • EPSS 5.53%
  • Published 24.05.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in CoreGraphics in Apple Mac OS X 10.4 up to 10.4.9 allows remote user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted PDF file.

2.1

CVE-2007-0751

  • EPSS 0.07%
  • Published 24.05.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command.

7.2

CVE-2007-0752

  • EPSS 0.23%
  • Published 24.05.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

The PPP daemon (pppd) in Apple Mac OS X 10.4.8 checks ownership of the stdin file descriptor to determine if the invoker has sufficient privileges, which allows local users to load arbitrary plugins and gain root privileges by bypassing this check.

7.2

CVE-2007-0753

  • EPSS 0.41%
  • Published 24.05.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

Format string vulnerability in the VPN daemon (vpnd) in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter.