Show filters
747 Total Results
Displaying 41-50 of 747
Sort by:
Attacker Value
Unknown
CVE-2016-1837
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1836
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1834
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-2105
Disclosure Date: May 05, 2016 (last updated November 08, 2023)
Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.
0
Attacker Value
Unknown
CVE-2016-1777
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Web Server in Apple OS X Server before 5.1 supports the RC4 algorithm, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
0
Attacker Value
Unknown
CVE-2016-1774
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
The Time Machine server in Server App in Apple OS X Server before 5.1 does not notify the user about ignored permissions during a backup, which makes it easier for remote attackers to obtain sensitive information in opportunistic circumstances by reading backup data that lacks intended restrictions.
0
Attacker Value
Unknown
CVE-2016-1776
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Web Server in Apple OS X Server before 5.1 does not properly restrict access to .DS_Store and .htaccess files, which allows remote attackers to obtain sensitive configuration information via an HTTP request.
0
Attacker Value
Unknown
CVE-2016-1762
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1787
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Wiki Server in Apple OS X Server before 5.1 allows remote attackers to obtain sensitive information from Wiki pages via unspecified vectors.
0
Attacker Value
Unknown
CVE-2016-1950
Disclosure Date: March 13, 2016 (last updated October 23, 2024)
Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code via crafted ASN.1 data in an X.509 certificate.
0