Vulnerabilities > Apple > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-07-11 | CVE-2002-0676 | Unspecified vulnerability in Apple mac OS X SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse updates. | 7.5 |
2002-05-29 | CVE-2002-0252 | Remote Buffer Overflow vulnerability in Apple QuickTime Content-Type Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header. | 7.5 |
2001-12-31 | CVE-2001-1531 | Buffer Overflow vulnerability in Apple Claris Emailer 2.0V2 Buffer overflow in Claris Emailer 2.0v2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an email attachment with a long filename. | 7.5 |
2001-12-31 | CVE-2001-1480 | Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 allows untrusted applets to access the system clipboard. | 7.5 |
2001-12-06 | CVE-2001-0720 | Unspecified vulnerability in Apple mac OS X 10.4.9 Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary commands by causing a BinHex or MacBinary file type to be downloaded, which causes the files to be executed if automatic decoding is enabled. | 7.5 |
2001-10-17 | CVE-2001-1447 | Privilege Escalation vulnerability in MacOS X NetInfo Manager NetInfo Manager for Mac OS X 10.0 through 10.1 allows local users to gain root privileges by opening applications using the (1) "recent items" and (2) "services" menus, which causes the applications to run with root privileges. | 7.2 |
2001-09-11 | CVE-2001-1446 | Unspecified vulnerability in Apple mac OS X Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, which allows remote attackers to learn the contents of files in web accessible directories. | 7.5 |
2001-05-03 | CVE-2001-0198 | Remote Overflow vulnerability in Apple Quicktime 4.1.2 Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbitrary commands via a long HREF parameter in an EMBED tag. | 7.6 |
2001-02-12 | CVE-2001-0102 | Unspecified vulnerability in Apple Macos "Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges by removing the Users & Groups Data File, which effectively removes the Owner password and allows the Normal user to log in as the Owner account without a password. | 7.2 |
1996-06-26 | CVE-1999-0138 | The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access. | 7.2 |