Vulnerabilities > Apple > MAC OS X > 10.4.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-11-15 | CVE-2007-4699 | Permissions, Privileges, and Access Controls vulnerability in Apple Safari The default configuration of Safari in Apple Mac OS X 10.4 through 10.4.10 adds a private key to the keychain with permissions that allow other applications to access the key without warning the user, which might allow other applications to bypass intended access restrictions. | 7.5 |
2007-11-15 | CVE-2007-4697 | Multiple Security vulnerability in Apple Mac OS X v10.4.11 2007-008 Unspecified vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via unknown vectors related to browser history, which triggers memory corruption. network apple | 6.8 |
2007-11-15 | CVE-2007-4696 | Race Condition vulnerability in Apple mac OS X and mac OS X Server Race condition in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain information for forms from other sites via unknown vectors related to "page transitions" in Safari. | 4.3 |
2007-11-15 | CVE-2007-4695 | Improper Input Validation vulnerability in Apple mac OS X and mac OS X Server Unspecified "input validation" vulnerability in WebCore in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to modify form field values via unknown vectors related to file uploads. | 4.3 |
2007-11-15 | CVE-2007-4694 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server Safari in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to access local content via file:// URLs. | 4.3 |
2007-11-15 | CVE-2007-4693 | Improper Authentication vulnerability in Apple mac OS X and mac OS X Server The SecurityAgent component in Mac OS X 10.4 through 10.4.10 allows attackers with physical access to bypass the authentication dialog of the screen saver and send keystrokes to a process, related to "handling of keyboard focus between secure text fields." | 7.2 |
2007-11-15 | CVE-2007-4691 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server The NSURL component in Apple Mac OS X 10.4 through 10.4.10 performs case-sensitive comparisons that allow attackers to bypass intended restrictions for local file system URLs. | 10.0 |
2007-11-15 | CVE-2007-4690 | Resource Management Errors vulnerability in Apple mac OS X and mac OS X Server Double free vulnerability in the NFS component in Apple Mac OS X 10.4 through 10.4.10 allows remote authenticated users to execute arbitrary code via a crafted AUTH_UNIX RPC packet. | 9.0 |
2007-11-15 | CVE-2007-4689 | Resource Management Errors vulnerability in Apple mac OS X and mac OS X Server Double free vulnerability in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of service (system shutdown) or execute arbitrary code via crafted IPV6 packets. | 10.0 |
2007-11-15 | CVE-2007-4688 | Information Exposure vulnerability in Apple mac OS X and mac OS X Server The Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to obtain all addresses for a host, including link-local addresses, via a Node Information Query. | 5.0 |