|
299281
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute ar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0049
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299282
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
|
CWE-200
Information Exposure
|
CVE-2008-0050
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299283
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11 might allow local users to execute arbitrary code via crafted time zone data.
|
CWE-189
Numeric Errors
|
CVE-2008-0051
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299284
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote attackers to force Safari users into opening an .ief file in AppleWorks, even when the "Open 'Safe' files" …
|
CWE-200
Information Exposure
|
CVE-2008-0052
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299285
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Foundation in Apple Mac OS X 10.4.11 might allow context-dependent attackers to execute arbitrary code via a malformed selector name to the NSSelectorFromString API, which causes an "unexpected selec…
|
CWE-20
Improper Input Validation
|
CVE-2008-0054
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299286
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Foundation in Apple Mac OS X 10.4.11 creates world-writable directories while NSFileManager copies files recursively and only modifies the permissions afterward, which allows local users to modify co…
|
CWE-362
Race Condition
|
CVE-2008-0055
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299287
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Stack-based buffer overflow in Foundation in Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via a "long pathname with an unexpected structure" that triggers the o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0056
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299288
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via a crafted serialized property list.
|
CWE-189
Numeric Errors
|
CVE-2008-0057
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299289
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in the NSURLConnection cache management functionality in Foundation for Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via unspecified manipulations that caus…
|
CWE-362
Race Condition
|
CVE-2008-0058
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299290
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in NSXML in Foundation for Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via a crafted XML file, related to "error handling logic."
|
CWE-362
Race Condition
|
CVE-2008-0059
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
