Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2007-4693

  • EPSS 0.08%
  • Published 15.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fi...

4.3

CVE-2007-4694

  • EPSS 0.45%
  • Published 15.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Safari in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to access local content via file:// URLs.

4.3

CVE-2007-4695

  • EPSS 0.45%
  • Published 15.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads.

4.3

CVE-2007-4696

  • EPSS 0.27%
  • Published 15.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Race condition in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain information for forms from other sites via unknown vectors related to "page transitions" in Safari.

6.8

CVE-2007-4697

  • EPSS 2.38%
  • Published 15.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via unknown vectors related to browser history, which triggers memory...

6.4

CVE-2007-1661

  • EPSS 2.72%
  • Published 07.11.2007 23:46:00
  • Last modified 09.04.2025 00:30:58

Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matching certain input bytes against some regex patterns in non-UTF-8 mode, which allows context-dependent attackers to obtain sensitive information or cause a denia...

5

CVE-2007-2404

  • EPSS 0.52%
  • Published 03.08.2007 10:17:00
  • Last modified 09.04.2025 00:30:58

CRLF injection vulnerability in CFNetwork on Apple Mac OS X 10.3.9 and 10.4.10 before 20070731 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in an unspecified context. NOTE: t...

5.8

CVE-2007-3744

  • EPSS 5.94%
  • Published 03.08.2007 10:17:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in mDNSResponder on Apple Mac OS X 10.4.10 before 20070731 allows network-adjacent remote attackers to execute arbitrary code via...

9.8

CVE-2007-3798

Exploit
  • EPSS 72.12%
  • Published 16.07.2007 22:30:00
  • Last modified 09.04.2025 00:30:58

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.

5

CVE-2007-1863

  • EPSS 34.51%
  • Published 27.06.2007 17:30:00
  • Last modified 09.04.2025 00:30:58

cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, allows remote attackers to cause a denial of service (child processing handler crash) via a request with...