|
296771
|
- |
|
apple
|
safari
|
The SSL implementation in Apple Safari before 5.1.1 on Mac OS X before 10.7 accesses uninitialized memory during the processing of X.509 certificates, which allows remote web servers to execute arbit…
|
CWE-94
Code Injection
|
CVE-2011-3231
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296772
|
- |
|
apple
|
safari
|
Apple Safari before 5.1.1 on Mac OS X does not enforce an intended policy for file: URLs, which allows remote attackers to execute arbitrary code via a crafted web site.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3230
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296773
|
- |
|
apple
|
safari
|
Directory traversal vulnerability in Apple Safari before 5.1.1 allows remote attackers to execute arbitrary JavaScript code, in a Safari Extensions context, via a crafted safari-extension: URL.
|
CWE-22
CWE-94
Path Traversal
Code Injection
|
CVE-2011-3229
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296774
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file.
|
CWE-94
Code Injection
|
CVE-2011-3228
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296775
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
libsecurity in Apple Mac OS X before 10.7.2 does not properly handle errors during processing of a nonstandard extension in a Certificate Revocation list (CRL), which allows remote attackers to execu…
|
CWE-20
Improper Input Validation
|
CVE-2011-3227
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296776
|
- |
|
apple
|
mac_os_x_server
mac_os_x
|
Open Directory in Apple Mac OS X 10.7 before 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, allows remote attackers to bypass the password requirement by leveraging lack of a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3226
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296777
|
- |
|
apple
|
mac_os_x_server
mac_os_x
|
The SMB File Server component in Apple Mac OS X 10.7 before 10.7.2 does not prevent all guest users from accessing the share point record of a guest-restricted folder, which allows remote attackers t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3225
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296778
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The User Documentation component in Apple Mac OS X through 10.6.8 uses http sessions for updates to App Store help information, which allows man-in-the-middle attackers to execute arbitrary code by s…
|
NVD-CWE-Other
|
CVE-2011-3224
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296779
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLIC movie file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3223
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296780
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3222
|
2024-11-21 10:30 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
