CVE-2010-1808
https://notcve.org/view.php?id=CVE-2010-1808
Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded font in a document. Desbordamiento de búfer basado en pila en Apple Type Services (ATS), en Apple Mac OS X v10.5.8 y v10.6.4 permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (caída de la aplicación) a través de fuentes manipuladas embebidas en un documento. • http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html http://securitytracker.com/id?1024359 http://support.apple.com/kb/HT4312 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-1802
https://notcve.org/view.php?id=CVE-2010-1802
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a certificate associated with a similar domain name, as demonstrated by use of a www.example.con certificate to spoof www.example.com. libsecurity en Apple Mac OS X v10.5.8 y v10.6.4 no realizad de forma adecuada la comparación entre las cadenas de nombre de dominio en los certificados X.509, lo que permite ataques "hombre-en-medio" (man-in-the-middle) para espiar los servidores SSL a través de certificados asociados con un nombre de dominio similar, como se demostró usándose para espíar desde www.example.con a www.example.com • http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html http://securitytracker.com/id?1024359 http://support.apple.com/kb/HT4312 • CWE-287: Improper Authentication •
CVE-2010-1801
https://notcve.org/view.php?id=CVE-2010-1801
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file. Desbordamiento de búfer basado en memoria dinámica (heap) en CoreGraphics en Apple Mac OS X v10.5.8 y v10.6.4 permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (caída de la aplicación) a través de ficheros PDF manipulados. • http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html http://securitytracker.com/id?1024359 http://support.apple.com/kb/HT4312 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-1782 – WebKit: multiple vulnerabilities in WebKitGTK
https://notcve.org/view.php?id=CVE-2010-1782
WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to the rendering of an inline element. WebKit de Apple Safari en versiones anteriores a la v5.0.1 en Mac OS X v10.5 hasta v10.6 y Windows, y anteriores a la v4.1.1 en Mac OS X v10.4, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de vectores de ataque relacionados con la representación por pantalla de un elemento "inline". • http://lists.apple.com/archives/security-announce/2010//Jul/msg00001.html http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html http://lists.apple.com/archives/security-announce/2010//Sep/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://secunia.com/advisories/41856 http://secunia.com/advisories/42314 http://secunia.com/advisories/43068 http:/ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-1786 – Apple Webkit SVG ForeignObject Rendering Layout Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-1786
Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a foreignObject element in an SVG document. Vulnerabilidad de usar después de liberar en WebKit de Apple Safari en versiones anteriores a la v5.0.1 en Mac OS X v10.5 hasta v10.6 y Windows, y anteriores a la v4.1.1 en Mac OS X v10.4, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de elemento foreignObject en un documento SVG. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Webkit's layout implementation of an particular tag used for embedding a foreign document into the SVG namespace. Later when the application attempts to calculate layout information for rendering the contents of the tag, the application will attempt to access a linebox that was previously destroyed. • http://lists.apple.com/archives/security-announce/2010//Jul/msg00001.html http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html http://lists.apple.com/archives/security-announce/2010//Sep/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html http://secunia.com/advisories/41856 http://secunia.com/advisories/42314 http://secunia.com/advisories/43068 http:/ • CWE-399: Resource Management Errors •