|
261031
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads.
|
CWE-20
Improper Input Validation
|
CVE-2007-4695
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261032
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via unknown vector…
|
NVD-CWE-noinfo
|
CVE-2007-4697
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261033
|
- |
|
apple
|
safari
|
Apple Safari 3 before Beta Update 3.0.4 on Windows, and Mac OS X 10.4 through 10.4.10, allows remote attackers to conduct cross-site scripting (XSS) attacks by causing JavaScript events to be associa…
|
CWE-79
Cross-site Scripting
|
CVE-2007-4698
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261034
|
- |
|
apple
|
safari
|
The default configuration of Safari in Apple Mac OS X 10.4 through 10.4.10 adds a private key to the keychain with permissions that allow other applications to access the key without warning the user…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4699
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261035
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Unspecified vulnerability in WebKit on Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to use Safari as an indirect proxy and send attacker-controlled data to arbitrary TCP ports via unkn…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4700
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261036
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
WebKit on Apple Mac OS X 10.4 through 10.4.10 does not create temporary files securely when Safari is previewing a PDF file, which allows local users to read the contents of that file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2007-4701
|
2017-07-29 10:33 |
2007-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261037
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Application Firewall in Apple Mac OS X 10.5, when "Block all incoming connections" is enabled, does not prevent root processes or mDNSResponder from accepting connections, which might allow remot…
|
NVD-CWE-Other
|
CVE-2007-4702
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261038
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block incoming connections" has been set for its associated executable,…
|
NVD-CWE-Other
|
CVE-2007-4703
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261039
|
- |
|
apple
|
mac_os_x
|
The Application Firewall in Apple Mac OS X 10.5 does not apply changed settings to processes that are started by launchd until the processes are restarted, which might allow attackers to bypass inten…
|
NVD-CWE-Other
|
CVE-2007-4704
|
2017-07-29 10:33 |
2007-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261040
|
- |
|
apple
|
quicktime
|
Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows remote attackers to execute arbitrary code via a crafted QTL file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2007-4706
|
2017-07-29 10:33 |
2007-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
