CVE-2008-2314
- EPSS 0.32%
- Veröffentlicht 01.07.2008 18:41:00
- Zuletzt bearbeitet 16.06.2026 22:53:31
Dock in Apple Mac OS X 10.5 before 10.5.4, when Exposé hot corners is enabled, allows physically proximate attackers to gain access to a locked session in (1) sleep mode or (2) screen saver mode via unspecified vectors.
CVE-2008-2308
- EPSS 0.32%
- Veröffentlicht 01.07.2008 17:41:00
- Zuletzt bearbeitet 16.06.2026 22:53:30
Unspecified vulnerability in Alias Manager in Apple Mac OS X 10.5.1 and earlier on Intel platforms allows local users to gain privileges or cause a denial of service (memory corruption and application crash) by resolving an alias that contains crafte...
CVE-2008-1027
- EPSS 1.54%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:50
Apple Filing Protocol (AFP) Server in Apple Mac OS X before 10.5.3 does not verify that requested files and directories are inside shared folders, which allows remote attackers to read arbitrary files via unspecified AFP traffic.
CVE-2008-1028
- EPSS 4.55%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:50
Unspecified vulnerability in AppKit in Apple Mac OS X before 10.5 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted document file, as demonstrated by opening the document wi...
- EPSS 4.74%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:50
Integer overflow in the CFDataReplaceBytes function in the CFData API in CoreFoundation in Apple Mac OS X before 10.5.3 allows context-dependent attackers to execute arbitrary code or cause a denial of service (crash) via an invalid length argument, ...
CVE-2008-1031
- EPSS 5.92%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:50
CoreGraphics in Apple Mac OS X before 10.5.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document, related to an uninitialized variable.
CVE-2008-1032
- EPSS 4.19%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:50
Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X before 10.5.3 allows user-assisted remote attackers to execute arbitrary code via an (1) Automator, (2) Help, (3) Safari, or (4) Terminal content type for a downloadable object, which ...
CVE-2008-1036
- EPSS 3.19%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:50:51
The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow re...
- EPSS 3.54%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:52:00
Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 10.5 allows remote attackers to read arbitrary files via directory traversal sequences in the URI.
CVE-2008-1572
- EPSS 0.37%
- Veröffentlicht 02.06.2008 21:30:00
- Zuletzt bearbeitet 16.06.2026 22:52:00
Image Capture in Apple Mac OS X before 10.5 does not properly use temporary files, which allows local users to overwrite arbitrary files, and display images that are being resized by this application.