Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.6

CVE-2006-0389

  • EPSS 0.58%
  • Published 03.03.2006 22:02:00
  • Last modified 03.04.2025 01:03:51

Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attackers to execute arbitrary JavaScript via unspecified vectors involving RSS feeds.

5

CVE-2006-0383

  • EPSS 1.16%
  • Published 02.03.2006 19:06:00
  • Last modified 03.04.2025 01:03:51

IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of error conditions".

7.5

CVE-2006-0384

  • EPSS 1.87%
  • Published 02.03.2006 19:06:00
  • Last modified 03.04.2025 01:03:51

automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names".

5.1

CVE-2006-0848

Exploit
  • EPSS 83.06%
  • Published 22.02.2006 23:02:00
  • Last modified 03.04.2025 01:03:51

The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes...

6.8

CVE-2005-2713

Exploit
  • EPSS 0.18%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option.

6.8

CVE-2005-2714

Exploit
  • EPSS 0.03%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file.

6.4

CVE-2005-3706

  • EPSS 1.49%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Heap-based buffer overflow in LibSystem in Mac OS X 10.4 through 10.4.5 allows context-dependent attackers to execute arbitrary code by causing an application that uses LibSystem to request a large amount of memory.

6.5

CVE-2005-3712

  • EPSS 4.45%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes.

2.1

CVE-2005-3782

Exploit
  • EPSS 0.07%
  • Published 31.12.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the "Show the Restart, Sleep, and Shut Down buttons" option is disabled, allows users with physical access to bypass login and reboot the system by entering ">re...

7.8

CVE-2005-4504

Exploit
  • EPSS 21.77%
  • Published 22.12.2005 23:03:00
  • Last modified 03.04.2025 01:03:51

The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files wit...