260841
|
- |
|
apple
|
mac_os_x
|
The fill_pipeinfo function in bsd/kern/sys_pipe.c in the XNU kernel in Apple Mac OS X 10.8.x allows local users to defeat the KASLR protection mechanism via the PROC_PIDFDPIPEINFO option to the proc_…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3952
|
2013-06-6 13:00 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260842
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 allows local users to read passwords entered into Login Window (aka LoginWindow) or Screen Saver Unlock by installing an input method that interc…
|
CWE-200
Information Exposure
|
CVE-2012-3718
|
2013-06-6 13:00 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260843
|
- |
|
microsoft
|
windows_7 windows_8 windows_rt windows_server_2003 windows_server_2008 windows_server_2012 windows_vista windows_xp
|
The EPATHOBJ::bFlatten function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Se…
|
CWE-22
Path Traversal
|
CVE-2013-3661
|
2013-06-6 12:26 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260844
|
- |
|
openssl
|
openssl
|
The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA) is used for the ECDHE_ECDSA cipher suite, does not properly …
|
CWE-310
Cryptographic Issues
|
CVE-2011-1945
|
2013-06-6 12:10 |
2011-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260845
|
- |
|
apple
|
safari
|
WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1009
|
2013-06-6 01:55 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260846
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Directory Service in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted message.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0984
|
2013-06-6 01:11 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260847
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent storage of permanent cookies upon exit from Safari, which might allow physically proximate attackers to bypa…
|
CWE-200
Information Exposure
|
CVE-2013-0982
|
2013-06-6 00:13 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260848
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Buffer overflow in QuickDraw Manager in Apple Mac OS X before 10.8.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0975
|
2013-06-5 23:39 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260849
|
- |
|
apple
|
mac_os_x
|
Stack consumption vulnerability in CoreAnimation in Apple Mac OS X before 10.8.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0983
|
2013-06-5 23:39 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260850
|
- |
|
apple
|
mac_os_x
|
Disk Management in Apple Mac OS X before 10.8.4 does not properly authenticate attempts to disable FileVault, which allows local users to cause a denial of service (loss of encryption functionality) …
|
CWE-287
Improper Authentication
|
CVE-2013-0985
|
2013-06-5 23:39 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|