Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-11 | CVE-2002-1266 | Local Security vulnerability in Apple mac OS X 10.2.2 Mac OS X 10.2.2 allows local users to gain privileges by mounting a disk image file that was created on another system, aka "Local User Privilege Elevation via Disk Image File." | 4.6 |
| 2002-11-12 | CVE-2002-1265 | Denial Of Service vulnerability in Multiple Vendor Sun RPC LibC TCP Time-Out The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote attackers to cause a denial of service (hang). | 5.0 |
| 2002-11-04 | CVE-2002-0666 | Denial of Service vulnerability in Multiple Vendor IPSec Implementation IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors. | 5.0 |
| 2002-08-12 | CVE-2002-0659 | Denial Of Service vulnerability in OpenSSL ASN.1 Parsing Error The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings. | 5.0 |
| 2001-12-31 | CVE-2001-1575 | Authentication DoS vulnerability in Apple Personal web Sharing 1.1/1.5/1.5.5 Apple Personal Web Sharing (PWS) 1.1, 1.5, and 1.5.5, when Web Sharing authentication is enabled, allows remote attackers to cause a denial of service via a long password, possibly due to a buffer overflow. | 5.0 |
| 2001-09-20 | CVE-2001-0649 | Denial-Of-Service vulnerability in Apple Personal web Sharing 1.5.5 Personal Web Sharing 1.5.5 allows a remote attacker to cause a denial of service via a long HTTP request. | 5.0 |
| 2000-04-04 | CVE-2000-0299 | Unspecified vulnerability in Apple Webobjects 4.5 Buffer overflow in WebObjects.exe in the WebObjects Developer 4.5 package allows remote attackers to cause a denial of service via an HTTP request with long headers such as Accept. | 5.0 |
| 1999-12-28 | CVE-2000-0041 | Unspecified vulnerability in Apple Macos 9.0 Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack. | 5.0 |
| 1999-11-01 | CVE-1999-1077 | Unspecified vulnerability in Apple Macos 9 Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled sessions via the programmer's switch or CMD-PWR keyboard sequence, which brings up a debugger that the attacker can use to disable the lock. | 4.6 |
| 1999-10-26 | CVE-1999-1076 | Unspecified vulnerability in Apple Macos 9 Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. | 4.6 |