Alias Manager in Apple Mac OS X 10.3.9 and 10.4.9 does not display files with the same name in mounted disk images that have the same name, which might allow user-assisted attackers to trick a user into executing malicious files.
Max CVSS
6.8
EPSS Score
1.01%
Published
2007-05-24
Updated
2017-07-29
Integer overflow in CoreGraphics in Apple Mac OS X 10.4 up to 10.4.9 allows remote user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted PDF file.
Max CVSS
9.3
EPSS Score
1.95%
Published
2007-05-24
Updated
2017-07-29
A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command.
Max CVSS
2.1
EPSS Score
0.04%
Published
2007-05-24
Updated
2017-07-29
The PPP daemon (pppd) in Apple Mac OS X 10.4.8 checks ownership of the stdin file descriptor to determine if the invoker has sufficient privileges, which allows local users to load arbitrary plugins and gain root privileges by bypassing this check.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-05-24
Updated
2017-07-29
Format string vulnerability in the VPN daemon (vpnd) in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-05-24
Updated
2018-10-16

CVE-2007-2386

Public exploit
Buffer overflow in mDNSResponder in Apple Mac OS X 10.4 up to 10.4.9 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.
Max CVSS
9.4
EPSS Score
39.94%
Published
2007-05-24
Updated
2017-07-29
Buffer overflow in iChat in Apple Mac OS X 10.3.9 and 10.4.9 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.
Max CVSS
10.0
EPSS Score
7.01%
Published
2007-05-24
Updated
2017-07-29
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!