|
263651
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The File Systems component in Apple Mac OS X before 10.7.2 does not properly track the specific X.509 certificate that a user manually accepted for an initial https WebDAV connection, which allows ma…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3213
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263652
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an Apple Cinema Display, which allows physically proximate attackers to bypass the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3214
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263653
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The kernel in Apple Mac OS X before 10.7.2 does not properly prevent FireWire DMA in the absence of a login, which allows physically proximate attackers to bypass intended access restrictions and dis…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3215
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263654
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The kernel in Apple Mac OS X before 10.7.2 does not properly implement the sticky bit for directories, which might allow local users to bypass intended permissions and delete files via an unlink syst…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3216
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263655
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
MediaKit in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted disk image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3217
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263656
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The "Save for Web" selection in QuickTime Player in Apple Mac OS X through 10.6.8 exports HTML documents that contain an http link to a script file, which allows man-in-the-middle attackers to conduc…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3218
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263657
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
QuickTime in Apple Mac OS X before 10.7.2 does not properly process URL data handlers in movie files, which allows remote attackers to obtain sensitive information from uninitialized memory locations…
|
CWE-200
Information Exposure
|
CVE-2011-3220
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263658
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
QuickTime in Apple Mac OS X before 10.7.2 does not properly handle the atom hierarchy in movie files, which allows remote attackers to execute arbitrary code or cause a denial of service (application…
|
CWE-94
Code Injection
|
CVE-2011-3221
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263659
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3222
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263660
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLIC movie file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3223
|
2012-01-14 12:55 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
