Vulnerabilities > Apple > MAC OS X Server > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-03-18 | CVE-2008-0049 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server AppKit in Apple Mac OS X 10.4.11 inadvertently makes an NSApplication mach port available for inter-process communication instead of inter-thread communication, which allows local users to execute arbitrary code via crafted messages to privileged applications. | 1.9 |
| 2007-11-15 | CVE-2007-4701 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server WebKit on Apple Mac OS X 10.4 through 10.4.10 does not create temporary files securely when Safari is previewing a PDF file, which allows local users to read the contents of that file. | 2.1 |
| 2007-05-24 | CVE-2007-0751 | Multiple Security vulnerability in Apple Mac OS X 2007-005 A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command. | 2.1 |
| 2006-12-20 | CVE-2006-5681 | Information Disclosure vulnerability in Apple Mac OS X Quicktime For Java QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet that accesses images that are being rendered by other embedded QuickTime objects. | 2.6 |
| 2006-11-27 | CVE-2006-6126 | Privilege Escalation vulnerability in Apple Mac OS X Mach-O Binary Loading Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. | 2.1 |
| 2006-11-27 | CVE-2006-6127 | Local Denial of Service vulnerability in Apple Mac OS X KQueue Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. | 2.1 |
| 2006-08-03 | CVE-2006-3499 | Multiple Security vulnerability in Apple Mac OS X The dynamic linker (dyld) in Apple Mac OS X 10.3.9 allows local users to obtain sensitive information via unspecified dynamic linker options that affect the use of standard error (stderr) by privileged applications. | 2.1 |
| 2006-08-02 | CVE-2006-3495 | Multiple Security vulnerability in Apple Mac OS X AFP Server in Apple Mac OS X 10.3.9 and 10.4.7 stores reconnect keys in a world-readable file, which allows local users to obtain the keys and access files and folders of other users. | 2.1 |
| 2006-07-06 | CVE-2006-3356 | Denial-Of-Service vulnerability in Mac OS X The TIFFFetchAnyArray function in ImageIO in Apple OS X 10.4.7 and earlier allows remote user-assisted attackers to cause a denial of service (application crash) via an invalid tag value in a TIFF image, possibly triggering a null dereference. | 2.6 |
| 2006-05-12 | CVE-2006-1457 | Multiple vulnerability in Apple Mac OS X Security Update 2006-003 Safari on Apple Mac OS X 10.4.6, when "Open `safe' files after downloading" is enabled, will automatically expand archives, which could allow remote attackers to overwrite arbitrary files via an archive that contains a symlink. | 2.6 |