Apple » Mac Os X Server » 10.4.1 : Security Vulnerabilities, CVEs, Published In 2007 (Overflow)
Integer overflow in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code via a crafted AppleTalk Session Protocol (ASP) message on an AppleTalk socket, which triggers a heap-based buffer overflow.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-11-15
Updated
2017-07-29
Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote attackers to execute arbitrary code via crafted TLVs in a BGP packet, related to an unchecked return value.
Max CVSS
9.8
EPSS Score
68.66%
Published
2007-07-16
Updated
2024-01-12
Heap-based buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in mDNSResponder on Apple Mac OS X 10.4.10 before 20070731 allows network-adjacent remote attackers to execute arbitrary code via a crafted packet.
Max CVSS
5.8
EPSS Score
4.24%
Published
2007-08-03
Updated
2017-07-29
Format string vulnerability in the VPN daemon (vpnd) in Apple Mac OS X 10.3.9 and 10.4.9 allows local users to execute arbitrary code via the -i parameter.
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-05-24
Updated
2018-10-16
Integer overflow in CoreGraphics in Apple Mac OS X 10.4 up to 10.4.9 allows remote user-assisted attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted PDF file.
Max CVSS
9.3
EPSS Score
1.72%
Published
2007-05-24
Updated
2017-07-29
Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".
Max CVSS
10.0
EPSS Score
5.75%
Published
2007-04-24
Updated
2011-03-08
Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via crafted requests to portmap.
Max CVSS
9.3
EPSS Score
3.86%
Published
2007-04-24
Updated
2017-07-29
Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL.
Max CVSS
9.3
EPSS Score
1.14%
Published
2007-03-13
Updated
2017-07-29
Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through 10.4.9, when running on hardware with the original AirPort wireless card, allows local users to execute arbitrary code by "sending malformed control commands."
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-04-24
Updated
2011-03-08
Integer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via a crafted AppleSingleEncoding disk image.
Max CVSS
6.8
EPSS Score
5.56%
Published
2007-03-13
Updated
2011-03-08
Stack-based buffer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to execute arbitrary code via an image with a crafted ColorSync profile.
Max CVSS
6.8
EPSS Score
2.86%
Published
2007-03-13
Updated
2011-03-08
11 vulnerabilities found