Vulnerabilities > Apple > MAC OS X > 10.4.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-21 | CVE-2006-3509 | Buffer Overflow vulnerability in Apple Mac OS X AirPort Wireless Driver Integer overflow in the API for the AirPort wireless driver on Apple Mac OS X 10.4.7 might allow physically proximate attackers to cause a denial of service (crash) or execute arbitrary code in third-party wireless software that uses the API via crafted frames. | 7.2 |
| 2006-09-21 | CVE-2006-3508 | Buffer Overflow vulnerability in Apple Mac OS X AirPort Wireless Driver Heap-based buffer overflow in the AirPort wireless driver on Apple Mac OS X 10.4.7 allows physically proximate attackers to cause a denial of service (crash), gain privileges, and execute arbitrary code via a crafted frame that is not properly handled during scan cache updates. | 7.2 |
| 2006-09-21 | CVE-2006-3507 | Buffer Overflow vulnerability in Apple Mac OS X AirPort Wireless Driver Multiple stack-based buffer overflows in the AirPort wireless driver on Apple Mac OS X 10.3.9 and 10.4.7 allow physically proximate attackers to execute arbitrary code by injecting crafted frames into a wireless network. | 7.2 |
| 2006-09-19 | CVE-2006-4866 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument. | 4.6 |
| 2006-09-06 | CVE-2006-4095 | Reachable Assertion vulnerability in multiple products BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned. | 7.5 |
| 2006-08-21 | CVE-2006-3506 | Buffer Overflow vulnerability in Apple mac OS X, mac OS X Server and Xsan Buffer overflow in the Xsan Filesystem driver on Mac OS X 10.4.7 and OS X Server 10.4.7 allows local users with Xsan write access, to execute arbitrary code via unspecified vectors related to "processing a path name." This vulnerability is addressed in the following product release: Apple, Xsan, 1.4 | 4.6 |
| 2006-08-03 | CVE-2006-3505 | Multiple Security vulnerability in Apple Mac OS X WebKit in Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML document that causes WebKit to access an object that has already been deallocated. | 7.5 |
| 2006-08-03 | CVE-2006-3504 | Multiple Security vulnerability in Apple Mac OS X The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as "safe", which could allow attackers to execute Javascript code in local context when the "Open 'safe' files after downloading" option is enabled in Safari. | 5.1 |
| 2006-08-03 | CVE-2006-3503 | Multiple Security vulnerability in Apple Mac OS X Integer overflow in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed GIF image. | 5.1 |
| 2006-08-03 | CVE-2006-3502 | Multiple Security vulnerability in Apple Mac OS X Unspecified vulnerability in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image that triggers a memory allocation failure that is not properly handled. | 5.1 |