- EPSS 10.19%
- Veröffentlicht 24.04.2007 17:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:12
Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".
CVE-2007-0747
- EPSS 0.87%
- Veröffentlicht 24.04.2007 17:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:12
load_webdav in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when mounting a WebDAV filesystem, which allows local users to gain privileges by setting unspecified environment variables.
CVE-2007-0725
- EPSS 0.47%
- Veröffentlicht 24.04.2007 16:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:08
Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through 10.4.9, when running on hardware with the original AirPort wireless card, allows local users to execute arbitrary code by "sending malformed control commands."
CVE-2007-0729
- EPSS 0.89%
- Veröffentlicht 24.04.2007 16:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:09
Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment before executing commands, which allows local users to gain privileges by setting unspecified environment variables.
CVE-2007-0732
- EPSS 0.34%
- Veröffentlicht 24.04.2007 16:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:10
Unspecified vulnerability in the CoreServices daemon in CarbonCore in Apple Mac OS X 10.4 through 10.4.9 allows local users to gain privileges via unspecified vectors involving "obtaining a send right to [the] Mach task port."
CVE-2007-0721
- EPSS 3.03%
- Veröffentlicht 13.03.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:08
Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted compressed disk image that triggers memory corruption.
CVE-2007-0722
- EPSS 4.04%
- Veröffentlicht 13.03.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:08
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image.
CVE-2007-0723
- EPSS 3.76%
- Veröffentlicht 13.03.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:08
Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors.
CVE-2007-0724
- EPSS 0.79%
- Veröffentlicht 13.03.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:08
The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.
- EPSS 3.87%
- Veröffentlicht 13.03.2007 22:19:00
- Zuletzt bearbeitet 16.06.2026 22:36:09
The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys, which causes the keys to be regenerated...