Vulnerabilities > Apple > MAC OS X Server > 10.4.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-04-24 | CVE-2007-0736 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via crafted requests to portmap. | 9.3 |
| 2007-04-24 | CVE-2007-0735 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving crafted web pages that trigger certain error conditions that are not properly reported in certain circumstances, resulting in accessing deallocated memory. | 9.3 |
| 2007-04-24 | CVE-2007-0732 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Unspecified vulnerability in the CoreServices daemon in CarbonCore in Apple Mac OS X 10.4 through 10.4.9 allows local users to gain privileges via unspecified vectors involving "obtaining a send right to [the] Mach task port." The vendor has addressed this issue through Mac OS software updates. | 7.2 |
| 2007-04-24 | CVE-2007-0729 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X, mac OS X Preview.App and mac OS X Server Apple File Protocol (AFP) Client in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment before executing commands, which allows local users to gain privileges by setting unspecified environment variables. | 7.2 |
| 2007-04-24 | CVE-2007-0725 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through 10.4.9, when running on hardware with the original AirPort wireless card, allows local users to execute arbitrary code by "sending malformed control commands." | 7.2 |
| 2007-03-13 | CVE-2007-0731 | Applications Multiple vulnerability in Apple Mac OS X Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL. | 9.3 |
| 2007-03-13 | CVE-2007-0728 | Applications Multiple vulnerability in Apple Mac OS X Unspecified vulnerability in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 creates files insecurely while initializing a USB printer, which allows local users to create or overwrite arbitrary files. local apple | 4.4 |
| 2007-03-13 | CVE-2007-0726 | Applications Multiple vulnerability in Apple Mac OS X The SSH key generation process in OpenSSH in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote attackers to cause a denial of service by connecting to the server before SSH has finished creating keys, which causes the keys to be regenerated and can break trust relationships that were based on the original keys. | 5.0 |
| 2007-03-13 | CVE-2007-0724 | Applications Multiple vulnerability in Apple Mac OS X The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console. local apple | 6.9 |
| 2007-03-13 | CVE-2007-0723 | Applications Multiple vulnerability in Apple Mac OS X Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors. network apple | 8.5 |