Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.45%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:42:39

The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread Port or Thread Exception Port when executing a setuid program, which allows local users to execute arbitrary code by creating the port before launching the setui...

  • EPSS 0.49%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:43:42

Stack-based buffer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted IOCTL request that adds an AppleTalk zone to a routing table.

  • EPSS 0.67%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:43:42

Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk message with a negative value, which satisfies a signed comparison during mbuf allocation...

  • EPSS 0.49%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:43:42

Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol (ASP) message on an AppleTalk socket, which triggers a heap-based buffer overflo...

  • EPSS 2.12%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

AppleRAID in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows attackers to cause a denial of service (crash) via a crafted striped disk image, which triggers a NULL pointer dereference when it is mounted.

  • EPSS 1.58%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

CFFTP in CFNetwork for Apple Mac OS X 10.4 through 10.4.10 allows remote FTP servers to force clients to connect to other hosts via crafted responses to FTP PASV commands.

  • EPSS 1.5%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

CFNetwork in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 does not properly validate certificates, which allows remote attackers to spoof trusted SSL certificates via a man-in-the-middle attack.

  • EPSS 0.44%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

Buffer overflow in CoreFoundation in Apple Mac OS X 10.3.9 and 10.4 through 10.4.10 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted directory hierarchy.

  • EPSS 3.21%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

CoreText in Apple Mac OS X 10.4 through 10.4.10 allows attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted text content that triggers an access of an uninitialized object pointer.

  • EPSS 0.45%
  • Veröffentlicht 15.11.2007 01:46:00
  • Zuletzt bearbeitet 16.06.2026 22:44:34

Directory traversal vulnerability in the kernel in Apple Mac OS X 10.4 through 10.4.10 allows local users to bypass the chroot mechanism via a relative path when changing the current working directory.