Apple

macOS X Server

655 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 1.47%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:53:33

Finder in Apple Mac OS X 10.5 through 10.5.4 does not properly update permission data in the Get Info window after a lock operation that modifies Sharing & Permissions in a filesystem, which might allow local users to leverage weak permissions that w...

  • EPSS 3.4%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:53:34

ImageIO in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a crafted TIFF image.

  • EPSS 3.4%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:08

ImageIO in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows context-dependent attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via a crafted JPEG image with an embedded ICC profile.

  • EPSS 0.36%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:08

The kernel in Apple Mac OS X 10.5 through 10.5.4 does not properly flush cached credentials during recycling (aka purging) of a vnode, which might allow local users to bypass the intended read or write permissions of a file.

  • EPSS 2.04%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:08

Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-password account is enabled, allows attackers to bypass password authentication and login to any account via multiple attempts to login to the blank-password account, ...

  • EPSS 0.36%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:08

Login Window in Apple Mac OS X 10.4.11 does not clear the current password when a user makes a password-change attempt that is denied by policy, which allows opportunistic, physically proximate attackers to bypass authentication and change this user'...

  • EPSS 3.51%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:09

Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allow context-dependent attackers to cause a denial of service (application crash) or execute arbitrary code via vectors associated with "passing untrus...

  • EPSS 1.5%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:09

Remote Management and Screen Sharing in Apple Mac OS X 10.5 through 10.5.4, when used to set a password for a VNC viewer, displays additional input characters beyond the maximum password length, which might make it easier for attackers to guess passw...

  • EPSS 0.37%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:09

Time Machine in Apple Mac OS X 10.5 through 10.5.4 uses weak permissions for Time Machine Backup log files, which allows local users to obtain sensitive information by reading these files.

  • EPSS 5.8%
  • Veröffentlicht 16.09.2008 23:00:01
  • Zuletzt bearbeitet 16.06.2026 22:56:10

VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via vectors involving H.264 encoded media.