Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2007-0746

  • EPSS 35.05%
  • Published 24.04.2007 17:19:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".

7.2

CVE-2007-0747

  • EPSS 0.08%
  • Published 24.04.2007 17:19:00
  • Last modified 09.04.2025 00:30:58

load_webdav in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when mounting a WebDAV filesystem, which allows local users to gain privileges by setting unspecified environment variables.

7.2

CVE-2007-0725

  • EPSS 0.09%
  • Published 24.04.2007 16:19:00
  • Last modified 09.04.2025 00:30:58

Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through 10.4.9, when running on hardware with the original AirPort wireless card, allows local users to execute arbitrary code by "sending malformed control commands."

7.2

CVE-2007-0729

  • EPSS 0.08%
  • Published 24.04.2007 16:19:00
  • Last modified 09.04.2025 00:30:58

Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment before executing commands, which allows local users to gain privileges by setting unspecified environment variables.

7.2

CVE-2007-0732

  • EPSS 0.05%
  • Published 24.04.2007 16:19:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the CoreServices daemon in CarbonCore in Apple Mac OS X 10.4 through 10.4.9 allows local users to gain privileges via unspecified vectors involving "obtaining a send right to [the] Mach task port."

6.8

CVE-2007-0721

  • EPSS 2.36%
  • Published 13.03.2007 22:19:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted compressed disk image that triggers memory corruption.

6.8

CVE-2007-0722

  • EPSS 10.03%
  • Published 13.03.2007 22:19:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image.

8.5

CVE-2007-0723

  • EPSS 2.36%
  • Published 13.03.2007 22:19:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors.

6.9

CVE-2007-0724

  • EPSS 0.09%
  • Published 13.03.2007 22:19:00
  • Last modified 09.04.2025 00:30:58

The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.

5

CVE-2007-0726

  • EPSS 1.12%
  • Published 13.03.2007 22:19:00
  • Last modified 09.04.2025 00:30:58

The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys, which causes the keys to be regenerated...