|
263441
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The kernel in Apple Mac OS X 10.5 through 10.5.4 does not properly flush cached credentials during recycling (aka purging) of a vnode, which might allow local users to bypass the intended read or wri…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3609
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263442
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-password account is enabled, allows attackers to bypass password authentication and login to any account via multipl…
|
CWE-287
Improper Authentication
|
CVE-2008-3610
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263443
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Login Window in Apple Mac OS X 10.4.11 does not clear the current password when a user makes a password-change attempt that is denied by policy, which allows opportunistic, physically proximate attac…
|
CWE-287
Improper Authentication
|
CVE-2008-3611
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263444
|
- |
|
apple
|
mac_os_x
|
Finder in Apple Mac OS X 10.5.2 through 10.5.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors involving a search for a remote disk o…
|
CWE-399
Resource Management Errors
|
CVE-2008-3613
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263445
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allow context-dependent attackers to cause a denial of service (application crash) or execute arbitra…
|
CWE-189
Numeric Errors
|
CVE-2008-3616
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263446
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Remote Management and Screen Sharing in Apple Mac OS X 10.5 through 10.5.4, when used to set a password for a VNC viewer, displays additional input characters beyond the maximum password length, whic…
|
CWE-255
Credentials Management
|
CVE-2008-3617
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263447
|
- |
|
apple
|
mac_os_x
|
The File Sharing pane in the Sharing preference pane in Apple Mac OS X 10.5 through 10.5.4 does not inform users that the complete contents of their own home directories are shared for their own use,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3618
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263448
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Time Machine in Apple Mac OS X 10.5 through 10.5.4 uses weak permissions for Time Machine Backup log files, which allows local users to obtain sensitive information by reading these files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-3619
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263449
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via vectors …
|
CWE-399
Resource Management Errors
|
CVE-2008-3621
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263450
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5 through 10.5.4 allows remote attackers to inject arbitrary web script or HTML via an e-mail message that reaches a maili…
|
CWE-79
Cross-site Scripting
|
CVE-2008-3622
|
2017-08-8 10:32 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
