|
298241
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Remote Management and Screen Sharing in Apple Mac OS X 10.5 through 10.5.4, when used to set a password for a VNC viewer, displays additional input characters beyond the maximum password length, whic…
|
CWE-255
Credentials Management
|
CVE-2008-3617
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298242
|
- |
|
apple
|
mac_os_x
|
The File Sharing pane in the Sharing preference pane in Apple Mac OS X 10.5 through 10.5.4 does not inform users that the complete contents of their own home directories are shared for their own use,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3618
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298243
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Time Machine in Apple Mac OS X 10.5 through 10.5.4 uses weak permissions for Time Machine Backup log files, which allows local users to obtain sensitive information by reading these files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3619
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298244
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via vectors …
|
CWE-399
Resource Management Errors
|
CVE-2008-3621
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298245
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5 through 10.5.4 allows remote attackers to inject arbitrary web script or HTML via an e-mail message that reaches a maili…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3622
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298246
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Java on Apple Mac OS X 10.5.4 and 10.5.5 does not prevent applets from accessing file:// URLs, which allows remote attackers to execute arbitrary programs.
|
CWE-94
Code Injection
|
CVE-2008-3638
|
2017-08-8 10:32 |
2008-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298247
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in ColorSync in Mac OS X 10.4.11 and 10.5.5 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via an image with a craf…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3642
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298248
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in Finder in Mac OS X 10.5.5 allows user-assisted attackers to cause a denial of service (continuous termination and restart) via a crafted Desktop file that generates an er…
|
NVD-CWE-noinfo
|
CVE-2008-3643
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298249
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for configd (Networking component) in Mac OS X 10.4.11 and 10.5.5 allows local users to execute arbitrary code via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-3645
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298250
|
- |
|
apple
|
mac_os_x
|
The Postfix configuration file in Mac OS X 10.5.5 causes Postfix to be network-accessible when mail is sent from a local command-line tool, which allows remote attackers to send mail to local Mac OS …
|
CWE-362
Race Condition
|
CVE-2008-3646
|
2017-08-8 10:32 |
2008-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
