Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 6.47%
  • Veröffentlicht 05.11.2010 17:00:01
  • Zuletzt bearbeitet 16.06.2026 23:21:47

ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbi...

  • EPSS 0.31%
  • Veröffentlicht 29.09.2010 17:00:04
  • Zuletzt bearbeitet 16.06.2026 23:20:55

Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via a negative size value in a /dev/nsmb ioctl operati...

  • EPSS 1.81%
  • Veröffentlicht 21.09.2010 20:00:01
  • Zuletzt bearbeitet 16.06.2026 23:19:24

Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x through 10.6.4 does not properly handle errors, which allows remote attackers to bypass the password requirement for shared-folder access by leveraging knowledge of a valid account name.

  • EPSS 1.32%
  • Veröffentlicht 25.08.2010 20:00:16
  • Zuletzt bearbeitet 16.06.2026 23:19:21

CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafted responses.

  • EPSS 3.26%
  • Veröffentlicht 25.08.2010 20:00:16
  • Zuletzt bearbeitet 16.06.2026 23:19:22

Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file.

  • EPSS 0.8%
  • Veröffentlicht 25.08.2010 20:00:16
  • Zuletzt bearbeitet 16.06.2026 23:19:22

libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name,...

  • EPSS 3.26%
  • Veröffentlicht 25.08.2010 20:00:16
  • Zuletzt bearbeitet 16.06.2026 23:19:22

Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document.

Exploit
  • EPSS 5.84%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via negative size values for certain strings i...

  • EPSS 4.2%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.

  • EPSS 4.52%
  • Veröffentlicht 19.08.2010 18:00:05
  • Zuletzt bearbeitet 16.06.2026 23:21:32

Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Adobe Typ...