CVE-2008-0048
- EPSS 3.65%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:48:49
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via the a long file name to the NSDocument API.
CVE-2008-0049
- EPSS 0.4%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:48:49
AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged app...
- EPSS 2.13%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:48:49
CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
CVE-2008-0051
- EPSS 0.4%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:48:49
Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11 might allow local users to execute arbitrary code via crafted time zone data.
CVE-2008-0057
- EPSS 3.09%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:48:50
Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via a crafted serialized property list.
CVE-2008-0997
- EPSS 3.64%
- Veröffentlicht 18.03.2008 22:44:00
- Zuletzt bearbeitet 16.06.2026 22:50:45
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is no...
CVE-2008-0888
- EPSS 6.29%
- Veröffentlicht 17.03.2008 21:44:00
- Zuletzt bearbeitet 16.06.2026 22:50:32
The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a ...
CVE-2008-0037
- EPSS 1.63%
- Veröffentlicht 12.02.2008 20:00:00
- Zuletzt bearbeitet 16.06.2026 22:48:48
X11 in Apple Mac OS X 10.5 through 10.5.1 does not properly handle when the "Allow connections from network client" preference is disabled, which allows remote attackers to bypass intended access restrictions and connect to the X server.
CVE-2008-0038
- EPSS 0.33%
- Veröffentlicht 12.02.2008 20:00:00
- Zuletzt bearbeitet 16.06.2026 22:48:48
Launch Services in Apple Mac OS X 10.5 through 10.5.1 allows an uninstalled application to be launched if it is in a Time Machine backup, which might allow local users to bypass intended security restrictions or exploit vulnerabilities in the applica...
- EPSS 7.11%
- Veröffentlicht 12.02.2008 20:00:00
- Zuletzt bearbeitet 16.06.2026 22:48:48
Unspecified vulnerability in NFS in Apple Mac OS X 10.5 through 10.5.1 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via unknown vectors related to mbuf chains that trigger memory corruption.