Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2009-1236

Exploit
  • EPSS 4.82%
  • Published 02.04.2009 17:30:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwri...

4.9

CVE-2009-1237

Exploit
  • EPSS 0.24%
  • Published 02.04.2009 17:30:00
  • Last modified 09.04.2025 00:30:58

Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.

7.2

CVE-2009-1238

Exploit
  • EPSS 0.11%
  • Published 02.04.2009 17:30:00
  • Last modified 09.04.2025 00:30:58

Race condition in the HFS vfs sysctl interface in XNU 1228.8.20 and earlier on Apple Mac OS X 10.5.6 and earlier allows local users to cause a denial of service (kernel memory corruption) by simultaneously executing the same HFS_SET_PKG_EXTENSIONS co...

10

CVE-2009-0138

  • EPSS 2.5%
  • Published 13.02.2009 00:30:05
  • Last modified 09.04.2025 00:30:58

servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration.

9.3

CVE-2009-0139

  • EPSS 0.79%
  • Published 13.02.2009 00:30:05
  • Last modified 09.04.2025 00:30:58

Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service (system shutdown) or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow.

9.3

CVE-2009-0140

  • EPSS 0.43%
  • Published 13.02.2009 00:30:05
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the SMB component in Apple Mac OS X 10.4.11 and 10.5.6 allows remote SMB servers to cause a denial of service (memory exhaustion and system shutdown) via a crafted file system name.

5.5

CVE-2009-0141

  • EPSS 0.05%
  • Published 13.02.2009 00:30:05
  • Last modified 09.04.2025 00:30:58

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user.

7.2

CVE-2009-0011

  • EPSS 0.03%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Certificate Assistant in Apple Mac OS X 10.5.6 allows local users to overwrite arbitrary files via unknown vectors related to an "insecure file operation" on a temporary file.

10

CVE-2009-0012

  • EPSS 9.33%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted Unicode string.

2.1

CVE-2009-0013

  • EPSS 0.07%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

dscl in DS Tools in Apple Mac OS X 10.4.11 and 10.5.6 requires that passwords must be provided as command line arguments, which allows local users to gain privileges by listing process information.