CVE-2009-0014
- EPSS 0.35%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
Folder Manager in Apple Mac OS X 10.5.6 uses insecure default permissions when recreating a Downloads folder after it has been deleted, which allows local users to bypass intended access restrictions and read the Downloads folder.
CVE-2009-0015
- EPSS 0.32%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management."
CVE-2009-0017
- EPSS 0.45%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
csregprinter in the Printing component in Apple Mac OS X 10.4.11 and 10.5.6 does not properly handle error conditions, which allows local users to execute arbitrary code via unknown vectors that trigger a heap-based buffer overflow.
CVE-2009-0018
- EPSS 2.52%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
The Remote Apple Events server in Apple Mac OS X 10.4.11 and 10.5.6 does not properly initialize a buffer, which allows remote attackers to read portions of memory.
CVE-2009-0019
- EPSS 2.12%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
Remote Apple Events in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) or obtain sensitive information via unspecified vectors that trigger an out-of-bounds memory access.
CVE-2009-0020
- EPSS 2.9%
- Veröffentlicht 13.02.2009 00:30:04
- Zuletzt bearbeitet 16.06.2026 23:04:05
Unspecified vulnerability in CarbonCore in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted resource fork that triggers memory corruption.
CVE-2009-0009
- EPSS 2.56%
- Veröffentlicht 13.02.2009 00:30:00
- Zuletzt bearbeitet 16.06.2026 23:04:04
Unspecified vulnerability in the Pixlet codec in Apple Mac OS X 10.4.11 and 10.5.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted movie file that triggers memory corrup...
CVE-2009-0142
- EPSS 0.23%
- Veröffentlicht 12.02.2009 23:30:01
- Zuletzt bearbeitet 16.06.2026 23:04:20
Race condition in AFP Server in Apple Mac OS X 10.5.6 allows local users to cause a denial of service (infinite loop) via unspecified vectors related to "file enumeration logic."
CVE-2008-4217
- EPSS 5.36%
- Veröffentlicht 17.12.2008 01:30:00
- Zuletzt bearbeitet 16.06.2026 22:57:24
Integer signedness error in BOM in Apple Mac OS X before 10.5.6 allows remote attackers to execute arbitrary code via the headers in a crafted CPIO archive, leading to a stack-based buffer overflow.
CVE-2008-4218
- EPSS 0.34%
- Veröffentlicht 17.12.2008 01:30:00
- Zuletzt bearbeitet 16.06.2026 22:57:24
Multiple integer overflows in the kernel in Apple Mac OS X before 10.5.6 on Intel platforms allow local users to gain privileges via a crafted call to (1) i386_set_ldt or (2) i386_get_ldt.