CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2006-6126
https://notcve.org/view.php?id=CVE-2006-6126
27 Nov 2006 — Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. Apple Mac OS X permite a un usuario local provocar denegación de servicio (memoria corrupta) a través del binario manipulado Mach-O con una estructura de datos mal formada load_command. • http://projects.info-pull.com/mokb/MOKB-23-11-2006.html •
CVSS: 6.5EPSS: 46%CPEs: 2EXPL: 4CVE-2006-6062 – Apple Mac OSX 10.4.8 - UDIF Disk Image Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-6062
22 Nov 2006 — Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption. Vulnerabilidad no especificada en Apple Mac OSX 10.4.8, y posiblemente otras versiones, permite a atacantes remotos provocar una denegación de servicio (caída) mediante una imagen de disco UDTO HFS+ mal formada, como por ejemplo con "sectores dañados", lo cual provoca u... • https://www.exploit-db.com/exploits/29144 •
CVSS: 9.8EPSS: 23%CPEs: 2EXPL: 2CVE-2006-6061
https://notcve.org/view.php?id=CVE-2006-6061
22 Nov 2006 — com.apple.AppleDiskImageController in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via a malformed DMG image that triggers memory corruption. NOTE: the severity of this issue has been disputed by a third party, who states that the impact is limited to a denial of service (kernel panic) due to a vm_fault call with a non-aligned address. com.apple.AppleDiskImagecontroller en Apple Mac OS X 10.4.8, y posiblemente otras versiones, permite a atacantes remo... • http://alastairs-place.net/2006/11/dmg-vulnerability •
CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2CVE-2006-6015 – Apple Safari 2.0.4 - JavaScript Regular Expression Match Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-6015
21 Nov 2006 — Buffer overflow in the JavaScript implementation in Safari on Apple Mac OS X 10.4 allows remote attackers to cause a denial of service (application crash) via a long argument to the exec method of a regular expression. Desbordamiento de búfer en la implementación de JavaScript en Safari de Apple Mac OS X 10.4 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) mediante un argumento grande del método exec de una expresión regular. • https://www.exploit-db.com/exploits/29007 •
CVSS: 9.8EPSS: 37%CPEs: 2EXPL: 4CVE-2006-5710 – Apple Airport - 802.11 Probe Response Kernel Memory Corruption (PoC)
https://notcve.org/view.php?id=CVE-2006-5710
04 Nov 2006 — The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via an 802.11 probe response frame without any valid information element (IE) fields after the header, which triggers a heap-based buffer overflow. El controlador Aeropuerto para cierto Orinoco basados en tarjetas de aeropuerto en Darwin kernel 8.8.0 en Apple Mac OS X 10.4.8, y posiblemente otras versiones, permite a un ata... • https://www.exploit-db.com/exploits/2700 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 0CVE-2006-4399
https://notcve.org/view.php?id=CVE-2006-4399
02 Oct 2006 — User interface inconsistency in Workgroup Manager in Apple Mac OS X 10.4 through 10.4.7 appears to allow administrators to change the authentication type from crypt to ShadowHash passwords for accounts in a NetInfo parent, when such an operation is not actually supported, which could result in less secure password management than intended. Inconsistencia de interfaz de usuario en el Administrador de Grupos de Trabajo (Workgroup Manager) en Apple Mac OS X 10.4 hasta 10.4.7 aparece para permitir a los adminis... • http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html •
CVSS: 6.5EPSS: 1%CPEs: 9EXPL: 0CVE-2006-4395
https://notcve.org/view.php?id=CVE-2006-4395
02 Oct 2006 — Unspecified vulnerability in QuickDraw Manager in Apple Mac OS X 10.3.9 and 10.4 through 10.4.7 allows context-dependent attackers to cause a denial of service ("memory corruption" and crash) via a crafted PICT image that is not properly handled by a certain "unsupported QuickDraw operation." Vulnerabilidad no especificada en Quickdraw Manager en Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.7 permite a atacantes (locales o remotos dependiendo del contexto) provocar una denegación de servicio ("corrupción de memo... • http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html •
CVSS: 7.1EPSS: 0%CPEs: 8EXPL: 0CVE-2006-4393
https://notcve.org/view.php?id=CVE-2006-4393
02 Oct 2006 — Unspecified vulnerability in LoginWindow in Apple Mac OS X 10.4 through 10.4.7, when Fast User Switching is enabled, allows local users to gain access to Kerberos tickets of other users. Vulnerabilidad no especificada en LoginWindow en Apple Mac OS X 10.4 hasta 10.4.7, cuando el Cambio Rápido de Usuario está habilitado, permite a usuarios locales obtener acceso a las credenciales Kerberos de otros usuarios. • http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 0CVE-2006-4394
https://notcve.org/view.php?id=CVE-2006-4394
02 Oct 2006 — A logic error in LoginWindow in Apple Mac OS X 10.4 through 10.4.7, allows network accounts without GUIds to bypass service access controls and log into the system using loginwindow via unknown vectors. Un error lógico en LoginWindow en Apple Mac OS X 10.4 hasta 10.4.7, permite a cuentas de red sin GUIDs (Identificadores Globales Únicos) evitar los controles de acceso a servicios y acceder al sistema usando loginwindow mediante vectores no especificados. • http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html •
CVSS: 8.8EPSS: 4%CPEs: 8EXPL: 0CVE-2006-4391
https://notcve.org/view.php?id=CVE-2006-4391
02 Oct 2006 — Buffer overflow in Apple ImageIO on Apple Mac OS X 10.4 through 10.4.7 allows remote attackers to execute arbitrary code via a malformed JPEG2000 image. Desbordamiento de búfer en Apple ImageIO sobre Apple Mac OS X 10.4 hasta la 10.4.7 permite a un atacante remoto ejecutar código de su elección a través de una imagen JPEG2000 mal formada. • http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html •