Vulnerabilities > Apple > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-13 | CVE-2007-0748 | Remote Buffer Overflow vulnerability in Apple Darwin Streaming Server Heap-based buffer overflow in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allows remote attackers to execute arbitrary code via multiple trackID values in a SETUP RTSP request. | 10.0 |
2007-04-26 | CVE-2007-2296 | Numeric Errors vulnerability in Apple Quicktime Integer overflow in the FlipFileTypeAtom_BtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V (MP4) file. | 9.3 |
2007-04-26 | CVE-2007-2295 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Heap-based buffer overflow in the JVTCompEncodeFrame function in Apple Quicktime 7.1.5 and other versions before 7.2 allows remote attackers to execute arbitrary code via a crafted H.264 MOV file. | 9.3 |
2007-04-24 | CVE-2007-0746 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference". | 10.0 |
2007-04-24 | CVE-2007-0736 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via crafted requests to portmap. | 9.3 |
2007-04-24 | CVE-2007-0735 | Multiple Security vulnerability in Apple Mac OS X 2007-004 Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving crafted web pages that trigger certain error conditions that are not properly reported in certain circumstances, resulting in accessing deallocated memory. | 9.3 |
2007-03-13 | CVE-2007-0733 | Applications Multiple vulnerability in Apple Mac OS X Unspecified vulnerability in ImageIO in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RAW image that triggers memory corruption. | 9.3 |
2007-03-13 | CVE-2007-0731 | Applications Multiple vulnerability in Apple Mac OS X Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple Mac OS X 10.4 through 10.4.8 allows context-dependent attackers to execute arbitrary code via a long ACL. | 9.3 |
2007-03-05 | CVE-2007-0714 | Numeric Errors vulnerability in Apple Quicktime Integer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted QuickTime movie with a User Data Atom (UDTA) with an Atom size field with a large value. | 9.3 |
2007-03-05 | CVE-2007-0712 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MIDI file. | 9.3 |