Apple

macOS X Server

655 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 8.41%
  • Veröffentlicht 02.04.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:06:49

Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows remote attackers to cause a denial of service (system crash) via a ZIP NOTIFY (aka ZIPOP_NOTIFY) packet that overwri...

Exploit
  • EPSS 0.91%
  • Veröffentlicht 02.04.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:06:49

Multiple memory leaks in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allow local users to cause a denial of service (kernel memory consumption) via a crafted (1) SYS_add_profil or (2) SYS___mac_getfsstat system call.

Exploit
  • EPSS 0.62%
  • Veröffentlicht 02.04.2009 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:06:50

Race condition in the HFS vfs sysctl interface in XNU 1228.8.20 and earlier on Apple Mac OS X 10.5.6 and earlier allows local users to cause a denial of service (kernel memory corruption) by simultaneously executing the same HFS_SET_PKG_EXTENSIONS co...

  • EPSS 4.2%
  • Veröffentlicht 13.02.2009 00:30:05
  • Zuletzt bearbeitet 16.06.2026 23:04:20

servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers to modify the system configuration.

  • EPSS 2.86%
  • Veröffentlicht 13.02.2009 00:30:05
  • Zuletzt bearbeitet 16.06.2026 23:04:20

Integer overflow in the SMB component in Apple Mac OS X 10.5.6 allows remote SMB servers to cause a denial of service (system shutdown) or execute arbitrary code via a crafted SMB file system that triggers a heap-based buffer overflow.

  • EPSS 1.7%
  • Veröffentlicht 13.02.2009 00:30:05
  • Zuletzt bearbeitet 16.06.2026 23:04:20

Unspecified vulnerability in the SMB component in Apple Mac OS X 10.4.11 and 10.5.6 allows remote SMB servers to cause a denial of service (memory exhaustion and system shutdown) via a crafted file system name.

  • EPSS 0.3%
  • Veröffentlicht 13.02.2009 00:30:05
  • Zuletzt bearbeitet 16.06.2026 23:04:20

XTerm in Apple Mac OS X 10.4.11 and 10.5.6, when used with luit, creates tty devices with insecure world-writable permissions, which allows local users to write to the Xterm of another user.

  • EPSS 0.29%
  • Veröffentlicht 13.02.2009 00:30:04
  • Zuletzt bearbeitet 16.06.2026 23:04:04

Certificate Assistant in Apple Mac OS X 10.5.6 allows local users to overwrite arbitrary files via unknown vectors related to an "insecure file operation" on a temporary file.

  • EPSS 5.43%
  • Veröffentlicht 13.02.2009 00:30:04
  • Zuletzt bearbeitet 16.06.2026 23:04:04

Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted Unicode string.

  • EPSS 0.32%
  • Veröffentlicht 13.02.2009 00:30:04
  • Zuletzt bearbeitet 16.06.2026 23:04:04

dscl in DS Tools in Apple Mac OS X 10.4.11 and 10.5.6 requires that passwords must be provided as command line arguments, which allows local users to gain privileges by listing process information.