CVE-2007-0724
https://notcve.org/view.php?id=CVE-2007-0724
The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console. El interfaz IOKit HID en Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.8 no limita lo suficiente el acceso a ciertos controles, lo cual permite a usuarios locales obtener privilegios utilizando eventos de dispositivo HID para leer pulsaciones de teclado desde la consola. • http://docs.info.apple.com/article.html?artnum=305214 http://docs.info.apple.com/article.html?artnum=305391 http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://secunia.com/advisories/24479 http://secunia.com/advisories/24966 http://www.osvdb.org/34855 http://www.securityfocus.com/bid/22948 http://www.securitytracker.com/id?1017751 http://www.securitytracker.com/id?1017942 http: •
CVE-2007-0728
https://notcve.org/view.php?id=CVE-2007-0728
Unspecified vulnerability in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 creates files insecurely while initializing a USB printer, which allows local users to create or overwrite arbitrary files. Vulnerabilidad no especificada en Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.8 crea ficheros de forma insegura al inicializar una impresora USB, lo cual permite a usuarios locales crear o sobrescribir ficheros de su elección. • http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://secunia.com/advisories/24479 http://www.osvdb.org/34849 http://www.securityfocus.com/bid/22948 http://www.securitytracker.com/id?1017751 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.vupen.com/english/advisories/2007/0930 https://exchange.xforce.ibmcloud.com/vulnerabilities/32976 •
CVE-2007-0730
https://notcve.org/view.php?id=CVE-2007-0730
Server Manager (servermgrd) in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently validate authentication credentials, which allows remote attackers to bypass authentication and modify system configuration. Server Manager (servermgrd) en Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.8 no valida lo suficiente los credenciales de autenticación, lo cual permite a atacantes remotos evitar la autenticación y modificar la configuración del sistema. • http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://secunia.com/advisories/24479 http://www.osvdb.org/34851 http://www.securityfocus.com/bid/22948 http://www.securitytracker.com/id?1017751 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.vupen.com/english/advisories/2007/0930 https://exchange.xforce.ibmcloud.com/vulnerabilities/32978 •
CVE-2007-0733
https://notcve.org/view.php?id=CVE-2007-0733
Unspecified vulnerability in ImageIO in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote user-assisted attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RAW image that triggers memory corruption. Vulnerabilidad no especificada en ImageIO de Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.8 permite a atacantes remotos con la complicidad del usuario provocar una denegación de servicio (caída de la aplicación) y posiblemente ejecutar código de su elección mediante una imagen RAW artesanal que provoca una corrupción de memoria. • http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://secunia.com/advisories/24479 http://www.kb.cert.org/vuls/id/873868 http://www.osvdb.org/34853 http://www.securityfocus.com/bid/22948 http://www.securitytracker.com/id?1017758 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.vupen.com/english/advisories/2007/0930 https://exchange.xforce.ibmcloud.com/vulnerabilities/32974 •
CVE-2007-0723
https://notcve.org/view.php?id=CVE-2007-0723
Unspecified vulnerability in the authentication feature for DirectoryService (DS Plug-Ins) for Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remote authenticated LDAP users to modify the root password and gain privileges via unknown vectors. Vulnerabilidad no especificada en la característica de autenticación de DirectoryService (DS Plug-Ins) para Apple Mac OS X 10.3.9 y 10.4 hasta 10.4.8 permite a usuarios LDAP remotos autenticados modificar la contraseña de root y obtener privilegios mediante vectores no especificados. • http://docs.info.apple.com/article.html?artnum=305214 http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html http://secunia.com/advisories/24479 http://www.kb.cert.org/vuls/id/557064 http://www.osvdb.org/34848 http://www.securityfocus.com/bid/22948 http://www.securitytracker.com/id?1017751 http://www.us-cert.gov/cas/techalerts/TA07-072A.html http://www.vupen.com/english/advisories/2007/0930 •