Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.87%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:19

QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with Sorenson encoding.

  • EPSS 9.34%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:19

Integer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a FlashPix image with a malformed SubImage Header Stream containing a NumberOfTiles f...

  • EPSS 18.57%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:19

Heap-based buffer overflow in QuickTimeAuthoring.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC file, related to crafted DELTA_FLI ...

  • EPSS 1.78%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:19

Server Admin in Apple Mac OS X Server before 10.6.3 does not properly enforce authentication for directory binding, which allows remote attackers to obtain potentially sensitive information from Open Directory via unspecified LDAP requests.

  • EPSS 1.3%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:20

The default configuration of the FreeRADIUS server in Apple Mac OS X Server before 10.6.3 permits EAP-TLS authenticated connections on the basis of an arbitrary client certificate, which allows remote attackers to obtain network connectivity via a cr...

  • EPSS 0.98%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:20

Mail in Apple Mac OS X before 10.6.3 does not properly enforce the key usage extension during processing of a keychain that specifies multiple certificates for an e-mail recipient, which might make it easier for remote attackers to obtain sensitive i...

  • EPSS 4.79%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:20

Heap-based buffer overflow in QuickTimeMPEG.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted genl atom in a QuickTime movie file with MPE...

  • EPSS 1.09%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:21

Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list (SACL) for weblogs during weblog creation, which allows remote authenticated users to publish content via HTTP requests.

  • EPSS 1.4%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:21

Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list (SACL) for sending and receiving e-mail, which allows remote authenticated users to bypass intended access restrictions ...

  • EPSS 1.33%
  • Veröffentlicht 30.03.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:16:21

DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a craft...