Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2006-08-03 CVE-2006-3505 Multiple Security vulnerability in Apple Mac OS X
WebKit in Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTML document that causes WebKit to access an object that has already been deallocated.
network
low complexity
apple
7.5
2006-08-03 CVE-2006-3504 Multiple Security vulnerability in Apple Mac OS X
The Download Validation in LaunchServices for Apple Mac OS X 10.4.7 can identify certain HTML as "safe", which could allow attackers to execute Javascript code in local context when the "Open 'safe' files after downloading" option is enabled in Safari.
network
high complexity
apple
5.1
2006-08-03 CVE-2006-3503 Multiple Security vulnerability in Apple Mac OS X
Integer overflow in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a malformed GIF image.
network
high complexity
apple
5.1
2006-08-03 CVE-2006-3502 Multiple Security vulnerability in Apple Mac OS X
Unspecified vulnerability in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image that triggers a memory allocation failure that is not properly handled.
network
high complexity
apple
5.1
2006-08-03 CVE-2006-3501 Multiple Security vulnerability in Apple Mac OS X
Integer overflow in ImageIO for Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Radiance image.
network
high complexity
apple
5.1
2006-08-03 CVE-2006-3500 Multiple Security vulnerability in Apple Mac OS X
The dynamic linker (dyld) in Apple Mac OS X 10.4.7 allows local users to execute arbitrary code via an "improperly handled condition" that leads to use of "dangerous paths," probably related to an untrusted search path vulnerability.
local
low complexity
apple
7.2
2006-08-03 CVE-2006-3499 Multiple Security vulnerability in Apple Mac OS X
The dynamic linker (dyld) in Apple Mac OS X 10.3.9 allows local users to obtain sensitive information via unspecified dynamic linker options that affect the use of standard error (stderr) by privileged applications.
local
low complexity
apple
2.1
2006-08-03 CVE-2006-0393 Multiple Security vulnerability in Apple Mac OS X
OpenSSH in Apple Mac OS X 10.4.7 allows remote attackers to cause a denial of service or determine account existence by attempting to log in using an invalid user, which causes the server to hang.
network
high complexity
apple
4.0
2006-08-03 CVE-2006-0392 Multiple Security vulnerability in Apple Mac OS X
Buffer overflow in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Canon RAW image.
network
high complexity
apple
5.1
2006-08-02 CVE-2006-3498 Multiple Security vulnerability in Apple Mac OS X
Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute arbitrary code via a crafted BOOTP request.
network
low complexity
apple
critical
10.0