Apple

macOS X Server

655 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2009-2835

  • EPSS 0.07%
  • Veröffentlicht 10.11.2009 19:30:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The kernel in Apple Mac OS X before 10.6.2 does not properly handle task state segments, which allows local users to gain privileges, cause a denial of service (system crash), or obtain sensitive information via unspecified vectors.

6.2

CVE-2009-2836

  • EPSS 0.04%
  • Veröffentlicht 10.11.2009 19:30:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Race condition in Login Window in Apple Mac OS X 10.6.x before 10.6.2, when at least one account has a blank password, allows attackers to bypass password authentication and obtain login access to an arbitrary account via unspecified vectors.

6.8

CVE-2009-2839

  • EPSS 0.75%
  • Veröffentlicht 10.11.2009 19:30:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Screen Sharing in Apple Mac OS X 10.5.8 allows remote VNC servers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

4.9

CVE-2009-2840

  • EPSS 0.06%
  • Veröffentlicht 10.11.2009 19:30:01
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Spotlight in Apple Mac OS X 10.5.8 does not properly handle temporary files, which allows local users to overwrite arbitrary files in the context of a different user's privileges via unspecified vectors.

6.8

CVE-2009-2803

  • EPSS 0.89%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

CarbonCore in Apple Mac OS X 10.4.11 and 10.5.8 allows attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a file with a crafted resource fork.

6.8

CVE-2009-2804

  • EPSS 9.19%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in ColorSync in Apple Mac OS X 10.4.11 and 10.5.8, and Safari before 4.0.4 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ColorSync profile embedded in an ...

6.8

CVE-2009-2805

  • EPSS 2.42%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JBIG2 stream in a PDF file, leading to a heap-based buffer overflow...

7.2

CVE-2009-2807

  • EPSS 0.07%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Heap-based buffer overflow in the USB backend in CUPS in Apple Mac OS X 10.5.8 allows local users to gain privileges via unspecified vectors.

6.8

CVE-2009-2809

  • EPSS 2.41%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

ImageIO in Apple Mac OS X 10.4.11 and 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PixarFilm encoded TIFF image, related to "multiple memory corruption issues."

6.8

CVE-2009-2811

  • EPSS 2.52%
  • Veröffentlicht 14.09.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Incomplete blacklist vulnerability in Launch Services in Apple Mac OS X 10.5.8 allows user-assisted remote attackers to execute arbitrary code via a .fileloc file, which does not trigger a "potentially unsafe" warning message in the Quarantine featur...