10.2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-01-23	CVE-2007-0430	Denial-Of-Service vulnerability in Mac OS X The shared_region_map_file_np function in Apple Mac OS X 10.4.8 and earlier kernel allows local users to cause a denial of service (memory corruption) via a large mappingCount value. local low complexity apple	4.9
2006-12-31	CVE-2006-6906	Local Security vulnerability in Mac OS X Unspecified vulnerability in the Bluetooth stack on Mac OS 10.4.7 and earlier has unknown impact and local attack vectors, related to "Mach Exception Handling", a different issue than CVE-2006-6900. local low complexity apple	7.2
2006-11-30	CVE-2006-6173	Local Memory Corruption vulnerability in Apple Mac OS X Shared_Region_Make_Private_Np Kernel Function Buffer overflow in the shared_region_make_private_np function in vm/vm_unix.c in Mac OS X 10.4.6 and earlier allows local users to execute arbitrary code via (1) a small range count, which causes insufficient memory allocation, or (2) a large number of ranges in the shared_region_make_private_np_args parameter. local low complexity apple	7.2
2006-11-30	CVE-2006-4404	Multiple Security vulnerability in Apple Mac OS X 2006-007 The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with Admin credentials, does not authenticate the user before installing certain software requiring system privileges. network low complexity apple critical	10.0
2006-11-30	CVE-2006-4403	Multiple Security vulnerability in Apple Mac OS X 2006-007 The FTP server in Apple Mac OS X 10.4.8 and earlier, when FTP Access is enabled, will crash when a login failure occurs with a valid user name, which allows remote attackers to cause a denial of service (crash) and enumerate valid usernames. network high complexity apple	4.0
2006-11-30	CVE-2006-4402	Multiple Security vulnerability in Apple Mac OS X 2006-007 Heap-based buffer overflow in the Finder in Apple Mac OS X 10.4.8 and earlier allows user-assisted remote attackers to execute arbitrary code by browsing directories containing crafted .DS_Store files. network high complexity apple	5.1
2006-11-30	CVE-2006-4401	Multiple Security vulnerability in Apple Mac OS X 2006-007 Unspecified vulnerability in CFNetwork in Mac OS 10.4.8 and earlier allows user-assisted remote attackers to execute arbitrary FTP commands via a crafted FTP URI. network high complexity apple	5.1
2006-11-30	CVE-2006-4400	Multiple Security vulnerability in Apple Mac OS X 2006-007 Stack-based buffer overflow in the Apple Type Services (ATS) server in Mac OS 10.4.8 and earlier allow user-assisted attackers to execute arbitrary code via crafted font files. network high complexity apple	5.1
2006-11-30	CVE-2006-4396	Multiple Security vulnerability in Apple Mac OS X 2006-007 The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely create log files, which allows local users to create and modify arbitrary files via unspecified vectors, possibly relating to a symlink attack. local low complexity apple	4.6
2006-09-27	CVE-2006-5051	Double Free vulnerability in multiple products Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free. network high complexity openbsd debian apple CWE-415	8.1