Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2007-0646 1Apple 3Imovie Mac Os XSafari Apr 23, 2026 Feb 1, 2007 N/A· v4 N/A· v3 7.1 HIGH· v2 Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10, allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, wh...Show more Format string vulnerability in iMovie HD 6.0.3, and Safari in Apple Mac OS X 10.4 through 10.4.10, allows remote user-assisted attackers to cause a denial of service (crash) via format string specifiers in a filename, which is not properly handled when calling the NSRunCriticalAlertPanel Apple AppKit function.Show less
CVE-2007-0614 1Apple 3Ichat Instant Message FrameworkMac Os X Apr 23, 2026 Jan 31, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh ha...Show more The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh hash attribute in a TXT key.Show less
CVE-2007-0467 1Apple 1Mac Os X Apr 23, 2026 Jan 31, 2007 N/A· v4 N/A· v3 6.2 MEDIUM· v2 crashdump in Apple Mac OS X 10.4.8 allows local users in the admin group to modify arbitrary files or gain privileges via a symlink attack on application logs in /Library/Logs/CrashReporter/.
CVE-2007-0465 1Apple 2Installer Mac Os X Apr 23, 2026 Jan 31, 2007 N/A· v4 N/A· v3 7.6 HIGH· v2 Format string vulnerability in Apple Installer 2.1.5 on Mac OS X 10.4.8 allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a (1) PKG, (2) DISTZ, or (3) MPKG package filename.
CVE-2007-0588 1Apple 2Mac Os X Quicktime Apr 23, 2026 Jan 30, 2007 N/A· v4 N/A· v3 7.1 HIGH· v2 The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly...Show more The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PICT file that triggers memory corruption in the _GetSrcBits32ARGB function. NOTE: this issue might overlap CVE-2007-0462.Show less
CVE-2007-0462 1Apple 2Mac Os X Quicktime Apr 23, 2026 Jan 26, 2007 N/A· v4 N/A· v3 10.0 HIGH· v2 The _GetSrcBits32ARGB function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly e...Show more The _GetSrcBits32ARGB function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PICT image with a malformed Alpha RGB (ARGB) record, which triggers memory corruption.Show less
CVE-2007-0023 1Apple 1Mac Os X Apr 23, 2026 Jan 24, 2007 N/A· v4 N/A· v3 6.9 MEDIUM· v2 The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/Inp...Show more The CFUserNotificationSendRequest function in UserNotificationCenter.app in Apple Mac OS X 10.4.8, when used in combination with diskutil, allows local users to gain privileges via a malicious InputManager in Library/InputManagers in a user's home directory, which is executed when Cocoa applications attempt to notify the user.Show less
CVE-2007-0430 1Apple 1Mac Os X Apr 23, 2026 Jan 23, 2007 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The shared_region_map_file_np function in Apple Mac OS X 10.4.8 and earlier kernel allows local users to cause a denial of service (memory corruption) via a large mappingCount value.
CVE-2007-0022 1Apple 1Mac Os X Apr 23, 2026 Jan 23, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Untrusted search path vulnerability in writeconfig in Apple Mac OS X 10.4.8 allows local users to gain privileges via a modified PATH that points to a malicious launchctl program.
CVE-2007-0355 1Apple 2Mac Os X Minimal Slp Service Agent Apr 23, 2026 Jan 19, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary cod...Show more Buffer overflow in the Apple Minimal SLP v2 Service Agent (slpd) in Mac OS X 10.4.11 and earlier, including 10.4.8, allows local users, and possibly remote attackers, to gain privileges and possibly execute arbitrary code via a registration request with an invalid attr-list field.Show less
CVE-2007-0345 1Apple 1Mac Os X Apr 23, 2026 Jan 18, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The (1) Activity Monitor.app/Contents/Resources/pmTool, (2) Keychain Access.app/Contents/Resources/kcproxy, and (3) ODBC Administrator.app/Contents/Resources/iodbcadmintool programs in /Applications/Utilities/ in Mac OS...Show more The (1) Activity Monitor.app/Contents/Resources/pmTool, (2) Keychain Access.app/Contents/Resources/kcproxy, and (3) ODBC Administrator.app/Contents/Resources/iodbcadmintool programs in /Applications/Utilities/ in Mac OS X 10.4.8 have weak permissions (writable by admin group), which allows local admin users to gain root privileges by modifying a program and then performing permissions repair via diskutil.Show less
CVE-2007-0342 2Apple Omnigroup 4Mac Os X OmniwebSafari+1 more Apr 23, 2026 Jan 18, 2007 N/A· v4 7.5 HIGH· v3 4.3 MEDIUM· v2 WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as demonstrated by a crash...Show more WebCore in Apple WebKit build 18794 allows remote attackers to cause a denial of service (null dereference and application crash) via a TD element with a large number in the ROWSPAN attribute, as demonstrated by a crash of OmniWeb 5.5.3 on Mac OS X 10.4.8, a different vulnerability than CVE-2006-2019.Show less
CVE-2007-0318 1Apple 1Mac Os X Apr 23, 2026 Jan 18, 2007 N/A· v4 N/A· v3 7.8 HIGH· v2 The do_hfs_truncate function in Mac OS X 10.4.8 allows context-dependent attackers to cause a denial of service (kernel panic) via a crafted HFS+ filesystem in a DMG image, which causes an access of an invalid vnode stru...Show more The do_hfs_truncate function in Mac OS X 10.4.8 allows context-dependent attackers to cause a denial of service (kernel panic) via a crafted HFS+ filesystem in a DMG image, which causes an access of an invalid vnode structure during file removal.Show less
CVE-2007-0299 1Apple 1Mac Os X Apr 23, 2026 Jan 17, 2007 N/A· v4 N/A· v3 7.1 HIGH· v2 Integer overflow in the byte_swap_sbin function in bsd/ufs/ufs/ufs_byte_order.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service (kernel panic) by mounting a crafted Unix File System...Show more Integer overflow in the byte_swap_sbin function in bsd/ufs/ufs/ufs_byte_order.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service (kernel panic) by mounting a crafted Unix File System (UFS) DMG image, which triggers an invalid pointer dereference.Show less
CVE-2007-0267 2Apple Freebsd 2Freebsd Mac Os X Apr 23, 2026 Jan 17, 2007 N/A· v4 N/A· v3 6.6 MEDIUM· v2 The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service (kernel panic) and possibly corrupt other filesystems by mounting a crafted UNIX File System (UFS) DM...Show more The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users to cause a denial of service (kernel panic) and possibly corrupt other filesystems by mounting a crafted UNIX File System (UFS) DMG image that contains a corrupted directory entry (struct direct), related to the ufs_dirbad function. NOTE: a third party states that the FreeBSD issue does not cross privilege boundaries.Show less
CVE-2007-0236 1Apple 1Mac Os X Apr 23, 2026 Jan 16, 2007 N/A· v4 N/A· v3 10.0 HIGH· v2 Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (kernel panic) and possibly execute arbitrary code via a cr...Show more Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (kernel panic) and possibly execute arbitrary code via a crafted AppleTalk request that triggers a heap-based buffer overflow.Show less
CVE-2007-0229 2Apple Freebsd 3Freebsd Mac Os XMac Os X Server Apr 23, 2026 Jan 13, 2007 N/A· v4 N/A· v3 7.2 HIGH· v2 Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly gain privileges via a crafted DMG image that causes "allocation of a ne...Show more Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to CVE-2006-5679. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem.Show less
CVE-2007-0197 1Apple 1Mac Os X Apr 23, 2026 Jan 11, 2007 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption...Show more Finder 10.4.6 on Apple Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long volume name in a DMG disk image, which results in memory corruption.Show less
CVE-2007-0117 1Apple 2Mac Os X Mac Os X Server Apr 23, 2026 Jan 9, 2007 N/A· v4 N/A· v3 10.0 HIGH· v2 DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, whi...Show more DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.Show less
CVE-2006-6906 1Apple 1Mac Os X Apr 23, 2026 Dec 31, 2006 N/A· v4 N/A· v3 7.2 HIGH· v2 Unspecified vulnerability in the Bluetooth stack on Mac OS 10.4.7 and earlier has unknown impact and local attack vectors, related to "Mach Exception Handling", a different issue than CVE-2006-6900.

Previous 1...144145146...161 Next