Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2006-09-19 CVE-2006-4887 Remote Desktop Local Authentication Bypass vulnerability in Apple
Apple Remote Desktop (ARD) for Mac OS X 10.2.8 and later does not drop privileges on the remote machine while installing certain applications, which allows local users to bypass authentication and gain privileges by selecting the icon during installation.
local
low complexity
apple
7.2
2006-09-19 CVE-2006-4866 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.
local
low complexity
apple
4.6
2006-09-12 CVE-2006-4389 Overflow and Exception vulnerability in Apple QuickTime
Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted FlashPix (FPX) file, which triggers an exception that leads to an operation on an uninitialized object.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4388 Overflow and Exception vulnerability in Apple QuickTime
Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted FlashPix file.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4386 Overflow and Exception vulnerability in Apple QuickTime
Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted H.264 movie, a different issue than CVE-2006-4381.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4385 Overflow and Exception vulnerability in Apple QuickTime
Buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted SGI image.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4384 Overflow and Exception vulnerability in Apple QuickTime
Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via the COLOR_64 chunk in a FLIC (FLC) movie.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4382 Overflow and Exception vulnerability in Apple QuickTime
Multiple buffer overflows in Apple QuickTime before 7.1.3 allow user-assisted remote attackers to execute arbitrary code via a crafted QuickTime movie.
network
high complexity
apple
5.1
2006-09-12 CVE-2006-4381 Overflow and Exception vulnerability in Apple QuickTime
Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted H.264 movie.
network
high complexity
apple
5.1
2006-09-06 CVE-2006-4095 Reachable Assertion vulnerability in multiple products
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of service (crash) via certain SIG queries, which cause an assertion failure when multiple RRsets are returned.
network
low complexity
isc canonical apple CWE-617
7.5