Vulnerabilities > Apple > MAC OS X Server > 5.0.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-05-11 | CVE-2012-0649 | Race Condition vulnerability in Apple mac OS X and mac OS X Server Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10.7.4 allows local users to gain privileges via vectors involving a temporary file. | 6.9 |
| 2012-02-02 | CVE-2011-3462 | Security Bypass vulnerability in Apple Mac OS X Time Machine in Apple Mac OS X before 10.7.3 does not verify the unique identifier of its remote AFP volume or Time Capsule, which allows remote attackers to obtain sensitive information contained in new backups by spoofing this storage object, a different vulnerability than CVE-2010-1803. | 5.0 |
| 2012-02-02 | CVE-2011-3460 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Buffer overflow in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PNG file. | 7.5 |
| 2012-02-02 | CVE-2011-3459 | Numeric Errors vulnerability in Apple mac OS X and mac OS X Server Off-by-one error in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted rdrf atom in a movie file that triggers a buffer overflow. | 6.8 |
| 2012-02-02 | CVE-2011-3458 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server QuickTime in Apple Mac OS X before 10.7.3 does not prevent access to uninitialized memory locations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP4 file. | 6.8 |
| 2012-02-02 | CVE-2011-3457 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server The OpenGL implementation in Apple Mac OS X before 10.7.3 does not properly perform OpenGL Shading Language (aka GLSL) compilation, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted program. | 7.5 |
| 2012-02-02 | CVE-2011-3453 | Numeric Errors vulnerability in Apple mac OS X and mac OS X Server Integer overflow in libresolv in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application crash) via crafted DNS data. | 7.5 |
| 2012-02-02 | CVE-2011-3452 | Information Exposure vulnerability in Apple mac OS X and mac OS X Server Internet Sharing in Apple Mac OS X before 10.7.3 does not preserve the Wi-Fi configuration across software updates, which allows remote attackers to obtain sensitive information by leveraging the lack of a WEP password for a Wi-Fi network. | 4.3 |
| 2012-02-02 | CVE-2011-3449 | Resource Management Errors vulnerability in Apple mac OS X and mac OS X Server Use-after-free vulnerability in CoreText in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document. | 6.8 |
| 2012-02-02 | CVE-2011-3448 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Heap-based buffer overflow in CoreMedia in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding. | 6.8 |