cpe:2.3:o:apple:mac_os_x_server:10.3.9:*:*:*:*:*:*:*
Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.
Max CVSS
4.6
EPSS Score
0.08%
Published
2006-09-19
Updated
2008-09-05
Multiple stack-based buffer overflows in the AirPort wireless driver on Apple Mac OS X 10.3.9 and 10.4.7 allow physically proximate attackers to execute arbitrary code by injecting crafted frames into a wireless network.
Max CVSS
7.2
EPSS Score
0.10%
Published
2006-09-21
Updated
2011-03-08
WebKit in Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML document that causes WebKit to access an object that has already been deallocated.
Max CVSS
7.5
EPSS Score
4.88%
Published
2006-08-03
Updated
2017-07-20
Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute arbitrary code via a crafted BOOTP request.
Max CVSS
10.0
EPSS Score
5.33%
Published
2006-08-02
Updated
2017-07-20
Unspecified vulnerability in the "compression state handling" in Bom for Apple Mac OS X 10.3.9 and 10.4.7 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Zip archive.
Max CVSS
5.1
EPSS Score
1.56%
Published
2006-08-02
Updated
2011-04-07
Heap-based buffer overflow in BOM BOMArchiveHelper 10.4 (6.3) Build 312, as used in Mac OS X 10.4.6 and earlier, allows user-assisted attackers to execute arbitrary code via a crafted archive (such as ZIP) that contains long path names, which triggers an error in the BOMStackPop function.
Max CVSS
5.1
EPSS Score
2.14%
Published
2006-04-21
Updated
2017-07-20
Multiple heap-based buffer overflows in Mac OS X 10.4.6 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) PredictorVSetField function for TIFF or (2) CFAllocatorAllocate function for GIF, as used in applications that use ImageIO or AppKit. NOTE: the BMP vector has been re-assigned to CVE-2006-2238 because it affects a separate product family.
Max CVSS
6.4
EPSS Score
10.77%
Published
2006-04-21
Updated
2017-07-20
Heap-based buffer overflow in the LZWDecodeVector function in Mac OS X before 10.4.6, as used in applications that use ImageIO or AppKit, allows remote attackers to execute arbitrary code via crafted TIFF images.
Max CVSS
7.5
EPSS Score
41.00%
Published
2006-04-21
Updated
2011-03-07
Integer overflow in AFP Server for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors.
Max CVSS
5.0
EPSS Score
6.06%
Published
2006-08-02
Updated
2017-07-20
Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging.
Max CVSS
7.5
EPSS Score
5.33%
Published
2006-05-12
Updated
2017-07-20
Integer overflow in the mach_msg_send function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which leads to a heap-based buffer overflow.
Max CVSS
4.6
EPSS Score
0.04%
Published
2006-03-14
Updated
2013-09-06
Stack-based buffer overflow in Safari in Mac OS X 10.4.5 and earlier, and 10.3.9 and earlier, allows remote attackers to execute arbitrary code via unspecified vectors involving a web page with crafted JavaScript, a different vulnerability than CVE-2005-4504.
Max CVSS
6.4
EPSS Score
5.35%
Published
2006-03-06
Updated
2017-07-20
automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names".
Max CVSS
7.5
EPSS Score
2.19%
Published
2006-03-02
Updated
2017-07-20
13 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!