|
265391
|
- |
|
policyd-weight
|
policyd-weight
|
Race condition in the create_lockpath function in policyd-weight 0.1.14 beta-16 allows local users to modify or delete arbitrary files by creating the LOCKPATH directory, then modifying it after the …
|
CWE-362
Race Condition
|
CVE-2008-1570
|
2017-08-8 10:30 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265392
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Directory traversal vulnerability in the embedded web server in Image Capture in Apple Mac OS X before 10.5 allows remote attackers to read arbitrary files via directory traversal sequences in the UR…
|
CWE-22
Path Traversal
|
CVE-2008-1571
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265393
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Image Capture in Apple Mac OS X before 10.5 does not properly use temporary files, which allows local users to overwrite arbitrary files, and display images that are being resized by this application.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-1572
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265394
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The BMP and GIF image decoding engine in ImageIO in Apple Mac OS X before 10.5.3 allows remote attackers to obtain sensitive information (memory contents) via a crafted (1) BMP or (2) GIF image, whic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1573
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265395
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Integer overflow in ImageIO in Apple Mac OS X before 10.5.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image that trigge…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-1574
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265396
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in the Apple Type Services (ATS) server in Apple Mac OS X 10.5 before 10.5.3 allows user-assisted remote attackers to execute arbitrary code via a crafted embedded font in a…
|
CWE-399
Resource Management Errors
|
CVE-2008-1575
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265397
|
- |
|
apple
|
mac_os_x
|
Mail in Apple Mac OS X before 10.5, when an IPv6 SMTP server is used, does not properly initialize memory, which might allow remote attackers to execute arbitrary code or cause a denial of service (a…
|
CWE-399
Resource Management Errors
|
CVE-2008-1576
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265398
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in the Pixlet codec in Apple Pixlet Video in Apple Mac OS X before 10.5.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) …
|
NVD-CWE-noinfo
|
CVE-2008-1577
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265399
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The sso_util program in Single Sign-On in Apple Mac OS X before 10.5.3 places passwords on the command line, which allows local users to obtain sensitive information by listing the process.
|
CWE-200
Information Exposure
|
CVE-2008-1578
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265400
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.5 before 10.5.3 allows remote attackers to obtain sensitive information (user names) by reading the error message produced upon access to a nonexistent blog.
|
CWE-200
Information Exposure
|
CVE-2008-1579
|
2017-08-8 10:30 |
2008-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
