- EPSS 1.98%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:22
xar in Apple Mac OS X 10.5.8 does not properly validate package signatures, which allows attackers to have an unspecified impact via a modified package.
CVE-2010-0060
- EPSS 2.84%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:22
CoreAudio in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted audio content with QDMC encoding.
CVE-2010-0062
- EPSS 3.72%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:23
Heap-based buffer overflow in quicktime.qts in CoreMedia and QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed .3g2 movie file with H.263 encod...
CVE-2010-0063
- EPSS 1.57%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:23
Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X before 10.6.3 makes it easier for user-assisted remote attackers to execute arbitrary JavaScript via a web page that offers a download with a Content-Type value that is not on the list...
CVE-2010-0064
- EPSS 0.34%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:23
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 preserves file ownership during an authenticated Finder copy, which might allow local users to bypass intended disk-quota restrictions and have unspecified other impact by copying files owned by ot...
CVE-2010-0065
- EPSS 2.45%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:23
Disk Images in Apple Mac OS X before 10.6.3 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image with bzip2 compression.
CVE-2010-0497
- EPSS 2.52%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:17
Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image, which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type.
CVE-2010-0498
- EPSS 0.33%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:17
Directory Services in Apple Mac OS X before 10.6.3 does not properly perform authorization during processing of record names, which allows local users to gain privileges via unspecified vectors.
CVE-2010-0500
- EPSS 1.74%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:17
Event Monitor in Apple Mac OS X before 10.6.3 does not properly validate hostnames of SSH clients, which allows remote attackers to cause a denial of service (arbitrary client blacklisting) via a crafted DNS PTR record, related to a "plist injection ...
CVE-2010-0505
- EPSS 4.2%
- Veröffentlicht 30.03.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:18
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 (JPEG2000) image, related to incorrect calculation and the CGIm...