Vulnerabilities > Apple > MAC OS X Server > Critical

DATE CVE VULNERABILITY TITLE RISK
2007-03-13 CVE-2007-0731 Applications Multiple vulnerability in Apple Mac OS X
Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL.
network
apple
critical
 9.3
9.3
2007-01-09 CVE-2007-0117 Local Privilege Escalation vulnerability in Apple DiskManagement Framework BOM
DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation.
network
low complexity
apple
critical
 10.0
10
2006-11-22 CVE-2006-6061 Remote Denial Of Service vulnerability in Apple Mac OS X UDIF Disk Image
com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption.
network
apple
critical
 9.3
9.3
2006-08-02 CVE-2006-3498 Multiple Security vulnerability in Apple Mac OS X
Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute arbitrary code via a crafted BOOTP request.
network
low complexity
apple
critical
 10.0
10
2005-08-19 CVE-2005-2511 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using Kerberos authentication with LDAP, allows attackers to gain access to a root Terminal window.
network
low complexity
apple
critical
 10.0
10
2005-07-18 CVE-2005-1689 Double Free vulnerability in multiple products
Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.
network
low complexity
mit apple debian CWE-415
critical
 9.8
9.8
2005-01-27 CVE-2004-0926 Multiple Security vulnerability in Apple Mac OS X
Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image.
network
low complexity
easy-software-products apple
critical
 10.0
10
2004-12-31 CVE-2004-0090 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors.
network
low complexity
apple
critical
 10.0
10
2004-08-06 CVE-2004-0539 Unspecified vulnerability in Apple mac OS X and mac OS X Server
The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which could allow remote attackers to execute arbitrary code.
network
low complexity
apple
critical
 10.0
10
2004-03-29 CVE-2003-1009 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges.
network
low complexity
apple
critical
 10.0
10