Show filters
757 Total Results
Displaying 41-50 of 757
Sort by:
Attacker Value
Unknown
CVE-2016-1833
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1837
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1836
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1834
Disclosure Date: May 20, 2016 (last updated November 25, 2024)
Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-2105
Disclosure Date: May 05, 2016 (last updated November 08, 2023)
Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data.
0
Attacker Value
Unknown
CVE-2016-1777
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Web Server in Apple OS X Server before 5.1 supports the RC4 algorithm, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.
0
Attacker Value
Unknown
CVE-2016-1774
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
The Time Machine server in Server App in Apple OS X Server before 5.1 does not notify the user about ignored permissions during a backup, which makes it easier for remote attackers to obtain sensitive information in opportunistic circumstances by reading backup data that lacks intended restrictions.
0
Attacker Value
Unknown
CVE-2016-1776
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Web Server in Apple OS X Server before 5.1 does not properly restrict access to .DS_Store and .htaccess files, which allows remote attackers to obtain sensitive configuration information via an HTTP request.
0
Attacker Value
Unknown
CVE-2016-1762
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
0
Attacker Value
Unknown
CVE-2016-1787
Disclosure Date: March 24, 2016 (last updated November 25, 2024)
Wiki Server in Apple OS X Server before 5.1 allows remote attackers to obtain sensitive information from Wiki pages via unspecified vectors.
0
