|
291531
|
- |
|
apple
|
mac_os_x
|
The Screen Lock implementation in Apple Mac OS X before 10.9 does not immediately accept Keychain Status menu Lock Screen commands, and instead incorrectly relies on a certain timeout setting, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5187
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291532
|
- |
|
apple
|
mac_os_x
|
Power Management in Apple Mac OS X before 10.9 does not properly handle the interaction between locking and power assertions, which allows physically proximate attackers to obtain sensitive informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5186
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291533
|
- |
|
apple
|
mac_os_x
|
The ldapsearch command-line program in OpenLDAP in Apple Mac OS X before 10.9 does not properly process the minssf configuration setting, which allows remote attackers to obtain sensitive information…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5185
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291534
|
- |
|
apple
|
mac_os_x
|
The kernel in Apple Mac OS X before 10.9 does not properly check for errors during the processing of multicast Wi-Fi packets, which allows remote attackers to cause a denial of service (system crash)…
|
CWE-399
Resource Management Errors
|
CVE-2013-5184
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291535
|
- |
|
apple
|
mac_os_x
|
Mail in Apple Mac OS X before 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote attackers to obtain sensitive information by sniffin…
|
CWE-200
Information Exposure
|
CVE-2013-5183
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291536
|
- |
|
apple
|
mac_os_x
|
Mail in Apple Mac OS X before 10.9 allows remote attackers to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned mess…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5182
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291537
|
- |
|
apple
|
mac_os_x
|
The auto-configuration feature in Mail in Apple Mac OS X before 10.9 selects plaintext authentication for unspecified servers that support CRAM-MD5 authentication, which allows remote attackers to ob…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5181
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291538
|
- |
|
apple
|
mac_os_x
|
The srandomdev function in Libc in Apple Mac OS X before 10.9, when the kernel random-number generator is unavailable, produces predictable values instead of the intended random values, which makes i…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5180
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291539
|
- |
|
apple
|
mac_os_x
|
App Sandbox in Apple Mac OS X before 10.9 allows attackers to bypass intended sandbox restrictions via a crafted app that uses the LaunchServices interface to specify process arguments.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5179
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291540
|
- |
|
apple
|
mac_os_x
|
LaunchServices in Apple Mac OS X before 10.9 does not properly restrict Unicode characters in filenames, which allows context-dependent attackers to spoof file extensions via a crafted character sequ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5178
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
