|
261531
|
- |
|
apple
|
safari
|
Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to conduct cross-site scripting (XSS) attacks by causing JavaScript events to be associa…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4698
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261532
|
- |
|
apple
|
safari
|
The default configuration of Safari in Apple Mac OS X 10.4 through 10.4.10 adds a private key to the keychain with permissions that allow other applications to access the key without warning the user…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4699
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261533
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in WebKit on Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to use Safari as an indirect proxy and send attacker-controlled data to arbitrary TCP ports via unkn…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4700
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261534
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
WebKit on Apple Mac OS X 10.4 through 10.4.10 does not create temporary files securely when Safari is previewing a PDF file, which allows local users to read the contents of that file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4701
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261535
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remot…
|
NVD-CWE-Other
|
CVE-2007-4702
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261536
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block incoming connections" has been set for its associated executable,…
|
NVD-CWE-Other
|
CVE-2007-4703
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261537
|
- |
|
apple
|
mac_os_x
|
The Application Firewall in Apple Mac OS X 10.5 does not apply changed settings to processes that are started by launchd until the processes are restarted, which might allow attackers to bypass inten…
|
NVD-CWE-Other
|
CVE-2007-4704
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261538
|
- |
|
apple
|
quicktime
|
Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows remote attackers to execute arbitrary code via a crafted QTL file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4706
|
2017-07-29 10:33 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261539
|
- |
|
apple
|
quicktime
|
Multiple unspecified vulnerabilities in the Flash media handler in Apple QuickTime before 7.3.1 allow remote attackers to execute arbitrary code or have other unspecified impacts via a crafted QuickT…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4707
|
2017-07-29 10:33 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261540
|
- |
|
apple
|
mac_os_x
|
Format string vulnerability in Address Book in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via the URL handler.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2007-4708
|
2017-07-29 10:33 |
2007-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
