CVE-2010-2941
- EPSS 6.47%
- Veröffentlicht 05.11.2010 17:00:01
- Zuletzt bearbeitet 16.06.2026 23:21:47
ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbi...
CVE-2010-2530
- EPSS 0.31%
- Veröffentlicht 29.09.2010 17:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:55
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operati...
CVE-2010-1820
- EPSS 1.81%
- Veröffentlicht 21.09.2010 20:00:01
- Zuletzt bearbeitet 16.06.2026 23:19:24
Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x through 10.6.4 does not properly handle errors, which allows remote attackers to bypass the password requirement for shared-folder access by leveraging knowledge of a valid account name.
- EPSS 1.32%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 16.06.2026 23:19:21
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafted responses.
CVE-2010-1801
- EPSS 3.26%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 16.06.2026 23:19:22
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file.
CVE-2010-1802
- EPSS 0.8%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 16.06.2026 23:19:22
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name,...
CVE-2010-1808
- EPSS 3.26%
- Veröffentlicht 25.08.2010 20:00:16
- Zuletzt bearbeitet 16.06.2026 23:19:22
Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document.
CVE-2010-2806
- EPSS 5.84%
- Veröffentlicht 19.08.2010 18:00:05
- Zuletzt bearbeitet 16.06.2026 23:21:32
Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via negative size values for certain strings i...
CVE-2010-2807
- EPSS 4.2%
- Veröffentlicht 19.08.2010 18:00:05
- Zuletzt bearbeitet 16.06.2026 23:21:32
FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
CVE-2010-2808
- EPSS 4.52%
- Veröffentlicht 19.08.2010 18:00:05
- Zuletzt bearbeitet 16.06.2026 23:21:32
Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Adobe Typ...