Apple : Security Vulnerabilities, CVEs, Published In 2010 (Directory traversal)
Directory traversal vulnerability in FTP Server in Apple Mac OS X Server before 10.6.3 allows remote authenticated users to read arbitrary files via crafted filenames.
Max CVSS
6.8
EPSS Score
0.10%
Published
2010-03-30
Updated
2010-03-31
Directory traversal vulnerability in AFP Server in Apple Mac OS X before 10.6.3 allows remote attackers to list a share root's parent directory, and read and modify files in that directory, via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.28%
Published
2010-03-30
Updated
2013-09-10
Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote attackers to create arbitrary files via directory traversal sequences in an inline image-transfer operation.
Max CVSS
4.3
EPSS Score
0.29%
Published
2010-06-17
Updated
2010-06-17
Multiple directory traversal vulnerabilities in the (a) Local Storage and (b) Web SQL database implementations in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allow remote attackers to create arbitrary database files via vectors involving a (1) %2f and .. (dot dot) or (2) %5c and .. (dot dot) in a URL.
Max CVSS
4.3
EPSS Score
0.50%
Published
2010-06-11
Updated
2017-09-19
Directory traversal vulnerability in AFP Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote authenticated users to execute arbitrary code by creating files that are outside the bounds of a share.
Max CVSS
6.0
EPSS Score
0.80%
Published
2010-11-15
Updated
2010-12-10
5 vulnerabilities found