Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.2.6  Security Vulnerabilities
Heap-based buffer overflow in the syscall emulation functionality in Mac OS X before 10.3.9 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via crafted parameters.
CVSS Score
4.6
EPSS Score
0.004
Published
2005-05-12
Stack-based buffer overflow in the semop system call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments.
CVSS Score
4.6
EPSS Score
0.004
Published
2005-05-12
Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters.
CVSS Score
7.2
EPSS Score
0.004
Published
2005-05-12
Unknown vulnerability in the setsockopt system call in Mac OS X 10.3.9 and earlier allows local users to cause a denial of service (memory exhaustion) via crafted arguments.
CVSS Score
2.1
EPSS Score
0.003
Published
2005-05-12
Unknown vulnerability in the nfs_mount call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments.
CVSS Score
7.2
EPSS Score
0.004
Published
2005-05-12
Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users.
CVSS Score
3.6
EPSS Score
0.004
Published
2005-05-03
The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file.
CVSS Score
2.1
EPSS Score
0.009
Published
2005-05-02
Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts.
CVSS Score
7.6
EPSS Score
0.013
Published
2005-05-02
Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
CVSS Score
5.0
EPSS Score
0.054
Published
2005-01-27
AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets.
CVSS Score
7.5
EPSS Score
0.011
Published
2005-01-27


Contact Us

Shodan ® - All rights reserved