Vulnerabilities > Apple > MAC OS X > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-11-15 | CVE-2007-4701 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X and mac OS X Server WebKit on Apple Mac OS X 10.4 through 10.4.10 does not create temporary files securely when Safari is previewing a PDF file, which allows local users to read the contents of that file. | 2.1 |
| 2007-11-15 | CVE-2007-4679 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X CFFTP in CFNetwork for Apple Mac OS X 10.4 through 10.4.10 allows remote FTP servers to force clients to connect to other hosts via crafted responses to FTP PASV commands. | 2.6 |
| 2007-05-24 | CVE-2007-0751 | Multiple Security vulnerability in Apple Mac OS X 2007-005 A cleanup script in crontabs in Apple Mac OS X 10.3.9 and 10.4.9 might delete filesystems that have been mounted in /tmp, which might allow local users to cause a denial of service, related to the find command. | 2.1 |
| 2007-02-16 | CVE-2007-0710 | Resource Management Errors vulnerability in Apple Ichat The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote attackers to cause a denial of service (persistent application crash) via unspecified vectors, possibly related to CVE-2007-0614. | 2.1 |
| 2006-12-20 | CVE-2006-5681 | Information Disclosure vulnerability in Apple Mac OS X Quicktime For Java QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet that accesses images that are being rendered by other embedded QuickTime objects. | 2.6 |
| 2006-11-27 | CVE-2006-6126 | Privilege Escalation vulnerability in Apple Mac OS X Mach-O Binary Loading Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. | 2.1 |
| 2006-11-27 | CVE-2006-6127 | Local Denial of Service vulnerability in Apple Mac OS X KQueue Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. | 2.1 |
| 2006-10-03 | CVE-2006-4390 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 CFNetwork in Apple Mac OS X 10.4 through 10.4.7 and 10.3.9 allows remote SSL sites to appear as trusted sites by using encryption without authentication, which can cause the lock icon in Safari to be displayed even when the site's identity cannot be trusted. | 2.6 |
| 2006-10-03 | CVE-2006-4393 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 Unspecified vulnerability in LoginWindow in Apple Mac OS X 10.4 through 10.4.7, when Fast User Switching is enabled, allows local users to gain access to Kerberos tickets of other users. | 3.7 |
| 2006-10-03 | CVE-2006-4399 | Multiple Security vulnerability in Apple Mac OS X Pre 10.4.8 User interface inconsistency in Workgroup Manager in Apple Mac OS X 10.4 through 10.4.7 appears to allow administrators to change the authentication type from crypt to ShadowHash passwords for accounts in a NetInfo parent, when such an operation is not actually supported, which could result in less secure password management than intended. | 2.1 |