Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2011-0200

  • EPSS 2.87%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in ColorSync in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an image containing a crafted embedded ColorSync profile that triggers a heap-based b...

7.5

CVE-2011-0201

  • EPSS 4.28%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Off-by-one error in the CoreFoundation framework in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a CFString object that triggers a buffer overflow.

6.8

CVE-2011-0202

  • EPSS 1.48%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in CoreGraphics in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded Type 1 font in a PDF document.

6.8

CVE-2011-0204

  • EPSS 3.72%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image.

6.8

CVE-2011-0205

  • EPSS 6.12%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image.

7.5

CVE-2011-0206

  • EPSS 1.07%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in International Components for Unicode (ICU) in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving uppercase strings.

5

CVE-2011-0207

  • EPSS 0.31%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network.

6.8

CVE-2011-0208

  • EPSS 2.06%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

QuickLook in Apple Mac OS X 10.6 before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.

6.8

CVE-2011-0209

  • EPSS 1.4%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted RIFF WAV file.

6.8

CVE-2011-0210

  • EPSS 2.06%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted sample tables in a movie file.