Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2012-3716

  • EPSS 28.97%
  • Published 20.09.2012 21:55:02
  • Last modified 11.04.2025 00:51:21

CoreText in Apple Mac OS X 10.7.x before 10.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write or read) via a crafted text glyph.

2.1

CVE-2012-3718

  • EPSS 0.06%
  • Published 20.09.2012 21:55:02
  • Last modified 11.04.2025 00:51:21

Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 allows local users to read passwords entered into Login Window (aka LoginWindow) or Screen Saver Unlock by installing an input method that intercepts keystrokes.

6.8

CVE-2012-3719

  • EPSS 0.45%
  • Published 20.09.2012 21:55:02
  • Last modified 11.04.2025 00:51:21

Mail in Apple Mac OS X before 10.7.5 does not properly handle embedded web plugins, which allows remote attackers to execute arbitrary plugin code via an e-mail message that triggers the loading of a third-party plugin.

2.1

CVE-2012-0657

  • EPSS 0.06%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Quartz Composer in Apple Mac OS X before 10.7.4, when the RSS Visualizer screensaver is enabled, allows physically proximate attackers to bypass screen locking and launch a Safari process via unspecified vectors.

6.8

CVE-2012-0658

  • EPSS 1.91%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Buffer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted audio sample tables in a movie file that is progressively downloaded.

6.8

CVE-2012-0659

  • EPSS 1.78%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG file.

6.8

CVE-2012-0660

  • EPSS 1.78%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG file.

6.8

CVE-2012-0661

  • EPSS 1.31%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with JPEG2000 encoding.

7.5

CVE-2012-0662

  • EPSS 1.75%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Integer overflow in the Security Framework in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted input.

4.3

CVE-2012-0675

  • EPSS 0.51%
  • Published 11.05.2012 03:49:59
  • Last modified 11.04.2025 00:51:21

Time Machine in Apple Mac OS X before 10.7.4 does not require continued use of SRP-based authentication after this authentication method is first used, which allows remote attackers to read Time Capsule credentials by spoofing the backup volume.