Vulnerabilities > Apple > MAC OS X > 10.7.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-07-03 | CVE-2015-3713 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X and Quicktime QuickTime in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted movie file. | 6.8 |
2015-07-03 | CVE-2015-3712 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X The NVIDIA graphics driver in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds write) via a crafted app. | 9.3 |
2015-07-03 | CVE-2015-3711 | Information Exposure vulnerability in Apple mac OS X The NTFS implementation in Apple OS X before 10.10.4 allows attackers to obtain sensitive memory-layout information for the kernel via a crafted app. | 4.3 |
2015-07-03 | CVE-2015-3710 | 7PK - Security Features vulnerability in Apple Iphone OS and mac OS X Mail in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to trigger a refresh operation, and consequently cause a visit to an arbitrary web site, via a crafted HTML e-mail message. | 4.3 |
2015-07-03 | CVE-2015-3709 | Race Condition vulnerability in Apple mac OS X Race condition in kext tools in Apple OS X before 10.10.4 allows local users to bypass intended signature requirements for kernel extensions by leveraging improper pathname validation. | 6.9 |
2015-07-03 | CVE-2015-3708 | Multiple Security vulnerability in Apple Mac OS X Prior to 10.10.4 kextd in kext tools in Apple OS X before 10.10.4 allows attackers to write to arbitrary files via a crafted app that conducts a symlink attack. network apple | 8.8 |
2015-07-03 | CVE-2015-3707 | Multiple Security vulnerability in Apple Mac OS X Prior to 10.10.4 The FireWire driver in IOFireWireFamily in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app. | 9.3 |
2015-07-03 | CVE-2015-3706 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X IOAcceleratorFamily in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3705. | 9.3 |
2015-07-03 | CVE-2015-3705 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X IOAcceleratorFamily in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3706. | 9.3 |
2015-07-03 | CVE-2015-3704 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X runner in Install.framework in the Install Framework Legacy subsystem in Apple OS X before 10.10.4 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app. | 9.3 |