CVSS: 2.6EPSS: 0%CPEs: 2EXPL: 0CVE-2006-3356
https://notcve.org/view.php?id=CVE-2006-3356
The TIFFFetchAnyArray function in ImageIO in Apple OS X 10.4.7 and earlier allows remote user-assisted attackers to cause a denial of service (application crash) via an invalid tag value in a TIFF image, possibly triggering a null dereference. NOTE: This is a different issue than CVE-2006-1469. La función TIFFFetchAnyArray en ImageIO de Apple OS X 10.4.7 y versiones anteriores permiten al atacantes con la intervención del usuario causar una denegación de servicios (caída de la aplicación)a través de un valor de etiqueta inválido en una imagen TIFF, posiblemente lanzando una referencia nula. NOTA: Asunto diferente a CVE-2006-1469. • http://www.security-protocols.com/sp-x31-advisory.php http://www.vupen.com/english/advisories/2006/2606 https://exchange.xforce.ibmcloud.com/vulnerabilities/27482 •
CVSS: 5.0EPSS: 10%CPEs: 32EXPL: 1CVE-2006-1984
https://notcve.org/view.php?id=CVE-2006-1984
Unspecified vulnerability in the _cg_TIFFSetField function in Mac OS X 10.4.6 and earlier, as used in applications that use ImageIO or AppKit, allows remote attackers to cause a denial of service (application crash) via a crafted TIFF image that triggers a null dereference. • http://lists.apple.com/archives/security-announce/2006/May/msg00003.html http://secunia.com/advisories/19686 http://secunia.com/advisories/20077 http://www.security-protocols.com/modules.php?name=News&file=article&sid=3233 http://www.security-protocols.com/sp-x29-advisory.php http://www.securityfocus.com/bid/17634 http://www.securityfocus.com/bid/17951 http://www.us-cert.gov/cas/techalerts/TA06-132A.html http://www.vupen.com/english/advisories/2006/1452 http://www.vupen. •
CVSS: 4.6EPSS: 0%CPEs: 68EXPL: 1CVE-2006-1220
https://notcve.org/view.php?id=CVE-2006-1220
Integer overflow in the mach_msg_send function in the kernel for Mac OS X might allow local users to execute arbitrary code via unknown attack vectors related to a large message header size, which leads to a heap-based buffer overflow. • http://www.felinemenace.org/~nemo http://www.osvdb.org/28453 http://www.securityfocus.com/bid/17056 •
CVSS: 7.8EPSS: 11%CPEs: 75EXPL: 3CVE-2005-4504 – Apple Mac OSX - KHTMLParser Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-4504
The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag. • https://www.exploit-db.com/exploits/26971 http://docs.info.apple.com/article.html?artnum=303382 http://docs.info.apple.com/jarticle.html?artnum=303382-en http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html http://secunia.com/advisories/18220 http://secunia.com/advisories/19064 http://security-protocols.com/advisory/sp-x22-advisory.txt http://www.kb.cert.org/vuls/id/351217 http://www.securityfocus.com/bid/16045 http://www.securityfocus.com/bid/16907 •
CVSS: 2.1EPSS: 0%CPEs: 62EXPL: 0CVE-2005-2739
https://notcve.org/view.php?id=CVE-2005-2739
Keychain Access in Mac OS X 10.4.2 and earlier keeps a password visible even if a keychain times out while the password is being viewed, which could allow attackers with physical access to obtain the password. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html http://secunia.com/advisories/17368 http://securitytracker.com/id?1015126 http://www.osvdb.org/20430 http://www.securityfocus.com/bid/15252 http://www.vupen.com/english/advisories/2005/2256 https://exchange.xforce.ibmcloud.com/vulnerabilities/44462 •