|
263831
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Incomplete blacklist vulnerability in CoreTypes in Apple Mac OS X before 10.5.4 allows user-assisted remote attackers to execute arbitrary code via a (1) .xht or (2) .xhtm file, which does not trigge…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2309
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263832
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Format string vulnerability in c++filt in Apple Mac OS X 10.5 before 10.5.4 allows user-assisted attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted str…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2008-2310
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263833
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Launch Services in Apple Mac OS X before 10.5, when Open Safe Files is enabled, allows remote attackers to execute arbitrary code via a symlink attack, probably related to a race condition and automa…
|
CWE-59
CWE-362
Link Following
Race Condition
|
CVE-2008-2311
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263834
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Network Preferences in Apple Mac OS X 10.4.11 stores PPP passwords in cleartext in a world-readable file, which allows local users to obtain sensitive information by reading this file.
|
CWE-255
Credentials Management
|
CVE-2008-2312
|
2017-08-8 10:30 |
2008-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263835
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Mac OS X before 10.5 uses weak permissions for the User Template directory, which allows local users to gain privileges by inserting a Trojan horse file into this directory.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2313
|
2017-08-8 10:30 |
2008-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263836
|
- |
|
apple
|
xcode
xcode_tools
|
The WOHyperlink implementation in WebObjects in Apple Xcode tools before 3.1 appends local session IDs to generated non-local URLs, which allows remote attackers to obtain potentially sensitive infor…
|
CWE-200
Information Exposure
|
CVE-2008-2318
|
2017-08-8 10:30 |
2008-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263837
|
- |
|
apple
|
coregraphics
|
Unspecified vulnerability in CoreGraphics in Apple Mac OS X 10.4.11 and 10.5.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash)…
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2321
|
2017-08-8 10:30 |
2008-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263838
|
- |
|
apple
|
coregraphics
|
Integer overflow in CoreGraphics in Apple Mac OS X 10.4.11, 10.5.2, and 10.5.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PDF file with a…
|
CWE-189
Numeric Errors
|
CVE-2008-2322
|
2017-08-8 10:30 |
2008-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263839
|
- |
|
apple
|
data_detectors_engine
|
Unspecified vulnerability in Data Detectors Engine in Apple Mac OS X 10.5.4 allows attackers to cause a denial of service (resource consumption) via crafted textual content in messages.
|
NVD-CWE-noinfo
CWE-399
Resource Management Errors
|
CVE-2008-2323
|
2017-08-8 10:30 |
2008-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263840
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Repair Permissions tool in Disk Utility in Apple Mac OS X 10.4.11 adds the setuid bit to the emacs executable file, which allows local users to gain privileges by executing commands within emacs.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-2324
|
2017-08-8 10:30 |
2008-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
