Show filters
174 Total Results
Displaying 81-90 of 174
Sort by:
Attacker Value
Unknown

CVE-2011-0189

Disclosure Date: March 23, 2011 (last updated October 04, 2023)
The default configuration of Terminal in Apple Mac OS X 10.6 before 10.6.7 uses SSH protocol version 1 within the New Remote Connection dialog, which might make it easier for man-in-the-middle attackers to spoof SSH servers by leveraging protocol vulnerabilities.
0
0
Attacker Value
Unknown

CVE-2011-0186

Disclosure Date: March 23, 2011 (last updated October 04, 2023)
QuickTime in Apple Mac OS X before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted JPEG2000 image.
0
0
Attacker Value
Unknown

CVE-2011-0187

Disclosure Date: March 23, 2011 (last updated October 04, 2023)
The plug-in in QuickTime in Apple Mac OS X before 10.6.7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive video data via vectors involving a cross-site redirect.
0
0
Attacker Value
Unknown

CVE-2011-1417

Disclosure Date: March 11, 2011 (last updated October 04, 2023)
Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a Microsoft Office document with a crafted size field in the OfficeArtMetafileHeader, related to OfficeArtBlip, as demonstrated on the iPhone by Charlie Miller and Dion Blazakis during a Pwn2Own competition at CanSecWest 2011.
0
0
Attacker Value
Unknown

CVE-2010-4013

Disclosure Date: January 10, 2011 (last updated October 04, 2023)
Format string vulnerability in PackageKit in Apple Mac OS X 10.6.x before 10.6.6 allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to interaction between Software Update and distribution scripts.
0
0
Attacker Value
Unknown

CVE-2010-3795

Disclosure Date: November 16, 2010 (last updated October 04, 2023)
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses uninitialized memory locations during processing of GIF image data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted GIF file.
0
0
Attacker Value
Unknown

CVE-2010-3797

Disclosure Date: November 16, 2010 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Wiki Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2010-3786

Disclosure Date: November 16, 2010 (last updated October 04, 2023)
QuickLook in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Excel file.
0
0
Attacker Value
Unknown

CVE-2010-3789

Disclosure Date: November 16, 2010 (last updated October 04, 2023)
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted AVI file.
0
0
Attacker Value
Unknown

CVE-2010-3792

Disclosure Date: November 16, 2010 (last updated October 04, 2023)
Integer signedness error in QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
0
0
View More Topics  < Previous  Next >