Vulnerabilities > Apple > MAC OS X
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-11-27 | CVE-2006-6127 | Local Denial of Service vulnerability in Apple Mac OS X KQueue Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. | 2.1 |
| 2006-11-27 | CVE-2006-6126 | Privilege Escalation vulnerability in Apple Mac OS X Mach-O Binary Loading Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. | 2.1 |
| 2006-11-22 | CVE-2006-6062 | Remote Denial Of Service vulnerability in Apple Mac OS X UDIF Disk Image Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption. | 5.1 |
| 2006-11-22 | CVE-2006-6061 | Remote Denial Of Service vulnerability in Apple Mac OS X UDIF Disk Image com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. | 9.3 |
| 2006-11-21 | CVE-2006-6015 | Remote Denial of Service vulnerability in Apple mac OS X 10.4 Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression. | 5.0 |
| 2006-11-04 | CVE-2006-5710 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via an 802.11 probe response frame without any valid information element (IE) fields after the header, which triggers a heap-based buffer overflow. | 7.5 |
| 2006-10-03 | CVE-2006-4399 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 User interface inconsistency in Workgroup Manager in Apple Mac OS X 10.4 through 10.4.7 appears to allow administrators to change the authentication type from crypt to ShadowHash passwords for accounts in a NetInfo parent, when such an operation is not actually supported, which could result in less secure password management than intended. | 2.1 |
| 2006-10-03 | CVE-2006-4397 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 Unchecked error condition in LoginWindow in Apple Mac OS X 10.4 through 10.4.7 prevents Kerberos tickets from being destroyed if a user does not successfully log on to a network account from the login window, which might allow later users to gain access to the original user's Kerberos tickets. | 4.6 |
| 2006-10-03 | CVE-2006-4395 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 Unspecified vulnerability in QuickDraw Manager in Apple Mac OS X 10.3.9 and 10.4 through 10.4.7 allows context-dependent attackers to cause a denial of service ("memory corruption" and crash) via a crafted PICT image that is not properly handled by a certain "unsupported QuickDraw operation." | 5.1 |
| 2006-10-03 | CVE-2006-4394 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 A logic error in LoginWindow in Apple Mac OS X 10.4 through 10.4.7, allows network accounts without GUIds to bypass service access controls and log into the system using loginwindow via unknown vectors. | 7.5 |