Apple

macOS X Server

655 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2011-0201

  • EPSS 4.28%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Off-by-one error in the CoreFoundation framework in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a CFString object that triggers a buffer overflow.

6.8

CVE-2011-0202

  • EPSS 1.48%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer overflow in CoreGraphics in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded Type 1 font in a PDF document.

5

CVE-2011-0203

  • EPSS 0.17%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Absolute path traversal vulnerability in xftpd in the FTP Server component in Apple Mac OS X before 10.6.8 allows remote attackers to list arbitrary directories by using the root directory as the starting point of a recursive listing.

6.8

CVE-2011-0204

  • EPSS 3.72%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image.

6.8

CVE-2011-0205

  • EPSS 6.12%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image.

7.5

CVE-2011-0206

  • EPSS 1.07%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer overflow in International Components for Unicode (ICU) in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving uppercase strings.

5

CVE-2011-0207

  • EPSS 0.31%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network.

6.8

CVE-2011-0208

  • EPSS 2.06%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

QuickLook in Apple Mac OS X 10.6 before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.

6.4

CVE-2011-0212

  • EPSS 0.62%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML-RPC request containing an entity dec...

4.9

CVE-2011-1132

  • EPSS 0.05%
  • Veröffentlicht 24.06.2011 20:55:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The IPv6 implementation in the kernel in Apple Mac OS X before 10.6.8 allows local users to cause a denial of service (NULL pointer dereference and reboot) via vectors involving socket options.