|
298171
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notificat…
|
CWE-200
Information Exposure
|
CVE-2008-0990
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298172
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Array index error in pax in Apple Mac OS X 10.5.2 allows context-dependent attackers to execute arbitrary code via an archive with a crafted length value.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0992
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298173
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a PDF file with encryption, which makes it easier for attackers to decrypt the file via brute force methods.
|
CWE-200
Information Exposure
|
CVE-2008-0994
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298174
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4 when printing to an encrypted PDF file, which makes it easier for attackers to decrypt the file via brute force methods.
|
CWE-200
Information Exposure
|
CVE-2008-0995
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298175
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Printing component in Apple Mac OS X 10.5.2 might save authentication credentials to disk when starting a job on an authenticated print queue, which might allow local users to obtain the credenti…
|
CWE-255
CWE-200
Credentials Management
Information Exposure
|
CVE-2008-0996
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298176
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted P…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0997
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298177
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in NetCfgTool in the System Configuration component in Apple Mac OS X 10.4.11 and 10.5.2 allows local users to bypass authorization and execute arbitrary code via crafted di…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0998
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298178
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X 10.5.2 allows user-assisted attackers to cause a denial of service (crash) via a crafted Universal Disc Format (UDF) disk image, which triggers a NULL pointer dereference.
|
CWE-20
Improper Input Validation
|
CVE-2008-0999
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298179
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in Apple Safari before 3.1 allows remote attackers to inject arbitrary web script or HTML via a crafted javascript: URL.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1002
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298180
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebCore, as used in Apple Safari before 3.1, allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to sites that set t…
|
CWE-79
Cross-site Scripting
|
CVE-2008-1003
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
