|
260811
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe file type, which allows remote attackers to force Safari users into opening an .ief file in AppleWorks, even when the "Open 'Safe' files" …
|
CWE-200
Information Exposure
|
CVE-2008-0052
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260812
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Foundation in Apple Mac OS X 10.4.11 might allow context-dependent attackers to execute arbitrary code via a malformed selector name to the NSSelectorFromString API, which causes an "unexpected selec…
|
CWE-20
Improper Input Validation
|
CVE-2008-0054
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260813
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Foundation in Apple Mac OS X 10.4.11 creates world-writable directories while NSFileManager copies files recursively and only modifies the permissions afterward, which allows local users to modify co…
|
CWE-362
Race Condition
|
CVE-2008-0055
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260814
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Stack-based buffer overflow in Foundation in Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via a "long pathname with an unexpected structure" that triggers the o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0056
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260815
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple integer overflows in a "legacy serialization format" parser in AppKit in Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via a crafted serialized property list.
|
CWE-189
Numeric Errors
|
CVE-2008-0057
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260816
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in the NSURLConnection cache management functionality in Foundation for Apple Mac OS X 10.4.11 allows remote attackers to execute arbitrary code via unspecified manipulations that caus…
|
CWE-362
Race Condition
|
CVE-2008-0058
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260817
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Race condition in NSXML in Foundation for Apple Mac OS X 10.4.11 allows context-dependent attackers to execute arbitrary code via a crafted XML file, related to "error handling logic."
|
CWE-362
Race Condition
|
CVE-2008-0059
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260818
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Help Viewer in Apple Mac OS X 10.4.11 and 10.5.2 allows remote attackers to execute arbitrary Applescript via a help:topic_list URL that injects HTML or JavaScript into a topic list page, as demonstr…
|
CWE-94
Code Injection
|
CVE-2008-0060
|
2017-08-8 10:29 |
2008-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260819
|
- |
|
winamp
|
nullsoft_winamp
|
Multiple stack-based buffer overflows in in_mp3.dll in Winamp 5.21, 5.5, and 5.51 allow remote attackers to execute arbitrary code via a long (1) artist or (2) name tag in Ultravox streaming metadata…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2008-0065
|
2017-08-8 10:29 |
2008-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260820
|
- |
|
orb_networks
|
orb
|
Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which tri…
|
CWE-189
Numeric Errors
|
CVE-2008-0070
|
2017-08-8 10:29 |
2008-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
