|
291921
|
- |
|
apple
|
mac_os_x
|
Apple Mac OS X before 10.9 does not preserve a certain administrative system-preferences setting across software updates, which allows context-dependent attackers to bypass intended access restrictio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5189
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291922
|
- |
|
apple
|
mac_os_x
|
The Screen Lock implementation in Apple Mac OS X before 10.9, when hibernation and autologin are enabled, does not require a password for a transition out of hibernation, which allows physically prox…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5188
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291923
|
- |
|
apple
|
mac_os_x
|
The Screen Lock implementation in Apple Mac OS X before 10.9 does not immediately accept Keychain Status menu Lock Screen commands, and instead incorrectly relies on a certain timeout setting, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5187
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291924
|
- |
|
apple
|
mac_os_x
|
Power Management in Apple Mac OS X before 10.9 does not properly handle the interaction between locking and power assertions, which allows physically proximate attackers to obtain sensitive informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5186
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291925
|
- |
|
apple
|
mac_os_x
|
The ldapsearch command-line program in OpenLDAP in Apple Mac OS X before 10.9 does not properly process the minssf configuration setting, which allows remote attackers to obtain sensitive information…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5185
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291926
|
- |
|
apple
|
mac_os_x
|
The kernel in Apple Mac OS X before 10.9 does not properly check for errors during the processing of multicast Wi-Fi packets, which allows remote attackers to cause a denial of service (system crash)…
|
CWE-399
Resource Management Errors
|
CVE-2013-5184
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291927
|
- |
|
apple
|
mac_os_x
|
Mail in Apple Mac OS X before 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote attackers to obtain sensitive information by sniffin…
|
CWE-200
Information Exposure
|
CVE-2013-5183
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291928
|
- |
|
apple
|
mac_os_x
|
Mail in Apple Mac OS X before 10.9 allows remote attackers to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned mess…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5182
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291929
|
- |
|
apple
|
mac_os_x
|
The auto-configuration feature in Mail in Apple Mac OS X before 10.9 selects plaintext authentication for unspecified servers that support CRAM-MD5 authentication, which allows remote attackers to ob…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5181
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291930
|
- |
|
apple
|
mac_os_x
|
The srandomdev function in Libc in Apple Mac OS X before 10.9, when the kernel random-number generator is unavailable, produces predictable values instead of the intended random values, which makes i…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5180
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
