Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 3.65%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:48:49

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via the a long file name to the NSDocument API.

  • EPSS 0.4%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:48:49

AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged app...

  • EPSS 2.13%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:48:49

CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.

  • EPSS 0.4%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:48:49

Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11 might allow local users to execute arbitrary code via crafted time zone data.

  • EPSS 3.09%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:48:50

Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via a crafted serialized property list.

  • EPSS 3.64%
  • Veröffentlicht 18.03.2008 22:44:00
  • Zuletzt bearbeitet 16.06.2026 22:50:45

Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted PostScript Printer Description (PPD) file that is no...

  • EPSS 6.29%
  • Veröffentlicht 17.03.2008 21:44:00
  • Zuletzt bearbeitet 16.06.2026 22:50:32

The NEEDBITS macro in the inflate_dynamic function in inflate.c for unzip can be invoked using invalid buffers, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors that trigger a ...

  • EPSS 1.63%
  • Veröffentlicht 12.02.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:48

X11 in Apple Mac OS X 10.5 through 10.5.1 does not properly handle when the "Allow connections from network client" preference is disabled, which allows remote attackers to bypass intended access restrictions and connect to the X server.

  • EPSS 0.33%
  • Veröffentlicht 12.02.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:48

Launch Services in Apple Mac OS X 10.5 through 10.5.1 allows an uninstalled application to be launched if it is in a Time Machine backup, which might allow local users to bypass intended security restrictions or exploit vulnerabilities in the applica...

  • EPSS 7.11%
  • Veröffentlicht 12.02.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:48:48

Unspecified vulnerability in NFS in Apple Mac OS X 10.5 through 10.5.1 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via unknown vectors related to mbuf chains that trigger memory corruption.