Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.1

CVE-2009-0014

  • EPSS 0.07%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder.

4.9

CVE-2009-0015

  • EPSS 0.07%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management."

7.2

CVE-2009-0017

  • EPSS 0.08%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

csregprinter in the Printing component in Apple Mac OS X 10.4.11 and 10.5.6 does not properly handle error conditions, which allows local users to execute arbitrary code via unknown vectors that trigger a heap-based buffer overflow.

7.8

CVE-2009-0018

  • EPSS 0.55%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

The Remote Apple Events server in Apple Mac OS X 10.4.11 and 10.5.6 does not properly initialize a buffer, which allows remote attackers to read portions of memory.

7.5

CVE-2009-0019

  • EPSS 0.89%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Remote Apple Events in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) or obtain sensitive information via unspecified vectors that trigger an out-of-bounds memory access.

7.8

CVE-2009-0020

  • EPSS 2.24%
  • Published 13.02.2009 00:30:04
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption.

6.8

CVE-2009-0009

  • EPSS 2.61%
  • Published 13.02.2009 00:30:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Pixlet codec in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted movie file that triggers memory corrup...

1.9

CVE-2009-0142

  • EPSS 0.06%
  • Published 12.02.2009 23:30:01
  • Last modified 09.04.2025 00:30:58

Race condition in AFP Server in Apple Mac OS X 10.5.6 allows local users to cause a denial of service (infinite loop) via unspecified vectors related to "file enumeration logic."

9.3

CVE-2008-4217

  • EPSS 5.27%
  • Published 17.12.2008 01:30:00
  • Last modified 09.04.2025 00:30:58

Integer signedness error in BOM in Apple Mac OS X before 10.5.6 allows remote attackers to execute arbitrary code via the headers in a crafted CPIO archive, leading to a stack-based buffer overflow.

7.2

CVE-2008-4218

  • EPSS 0.05%
  • Published 17.12.2008 01:30:00
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in the kernel in Apple Mac OS X before 10.5.6 on Intel platforms allow local users to gain privileges via a crafted call to (1) i386_set_ldt or (2) i386_get_ldt.