Apple: >> Mac Os X >> 10.1.3 Security Vulnerabilities
The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings.
CVSS Score
5.0
EPSS Score
0.104
Published
2002-08-12
SoftwareUpdate for MacOS 10.1.x does not use authentication when downloading a software update, which could allow remote attackers to execute arbitrary code by posing as the Apple update server via techniques such as DNS spoofing or cache poisoning, and supplying Trojan Horse updates.
CVSS Score
7.5
EPSS Score
0.142
Published
2002-07-11
Point to Point Protocol daemon (pppd) in MacOS x 10.0 and 10.1 through 10.1.5 provides the username and password on the command line, which allows local users to obtain authentication information via the ps command.
CVSS Score
2.1
EPSS Score
0.002
Published
2001-12-31
Page 296