CVSS: 7.8EPSS: 75%CPEs: 2EXPL: 2CVE-2007-1071 – Apple Mac OSX 10.4.8 - ImageIO GIF Image Integer Overflow
https://notcve.org/view.php?id=CVE-2007-1071
22 Feb 2007 — Integer overflow in the gifGetBandProc function in ImageIO in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a crafted GIF image that triggers the overflow during decompression. NOTE: this is a different issue than CVE-2006-3502 and CVE-2006-3503. Desbordamiento de enteros en la función gifGetBandProc del ImageIO en Apple Mac OS X 10.4.8 permite a atacantes remotos provocar una denegación de servicio (fallo de segmentac... • https://www.exploit-db.com/exploits/29620 •
CVSS: 7.5EPSS: 19%CPEs: 3EXPL: 0CVE-2007-0897
https://notcve.org/view.php?id=CVE-2007-0897
16 Feb 2007 — Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor. Clam AntiVirus ClamAV anterior a 0.90 no cierra los descriptores de apertura de ficheros bajo ciertas condiciones, lo cual permite a atacantes remotos provocar denegación de serv... • http://docs.info.apple.com/article.html?artnum=307562 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.8EPSS: 95%CPEs: 3EXPL: 2CVE-2007-0229 – Apple Mac OSX 10.4.8 - DMG UFS FFS_MountFS Integer Overflow
https://notcve.org/view.php?id=CVE-2007-0229
13 Jan 2007 — Integer overflow in the ffs_mountfs function in Mac OS X 10.4.8 and FreeBSD 6.1 allows local users to cause a denial of service (panic) and possibly gain privileges via a crafted DMG image that causes "allocation of a negative size buffer" leading to a heap-based buffer overflow, a related issue to CVE-2006-5679. NOTE: a third party states that this issue does not cross privilege boundaries in FreeBSD because only root may mount a filesystem. Un desbordamiento de enteros en la función ffs_mountfs en Mac OS ... • https://www.exploit-db.com/exploits/29441 • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 3CVE-2007-0117 – Apple Mac OSX 10.4.8 - DiskManagement BOM 'cron' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2007-0117
09 Jan 2007 — DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which allows attackers to gain privileges via a BOM file under /Library/Receipts/, which triggers arbitrary file permission changes upon execution of a diskutil permission repair operation. DiskManagementTool en el DiskManagement.framework 92.29 de Mac OS X 10.4.8 no valida adecuadamente archivos de Factura de Materiales (Bill of Materials o BIM), lo cual permite a los atacan... • https://www.exploit-db.com/exploits/3088 •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2006-5681
https://notcve.org/view.php?id=CVE-2006-5681
20 Dec 2006 — QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet that accesses images that are being rendered by other embedded QuickTime objects. QuickTime para Java en Mac OS X 10.4 hasta 10.4.8, cuando es usado con Quartz Composer, permite a atacantes remotos obtener información sensible (imágenes de la pantalla) mediante un applet de Java que accede a imágenes que han sido renderizadas por otros ... • http://docs.info.apple.com/article.html?artnum=304916 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2006-6353
https://notcve.org/view.php?id=CVE-2006-6353
07 Dec 2006 — Multiple unspecified vulnerabilities in BOMArchiveHelper in Mac OS X allow user-assisted remote attackers to cause a denial of service (application crash) via unspecified vectors related to (1) certain KERN_PROTECTION_FAILURE thread crashes and (2) certain KERN_INVALID_ADDRESS thread crashes, as discovered with the "iSec Partners FileP fuzzer". Múltiples vulnerabilidades no especificadas en BOMArchiveHelper de Mac OS X permiten a atacantes remotos con la intervención del usuario provocar una denegación de s... • http://security-protocols.com/2006/12/04/bomarchivehelper-needs-some-lovin •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2006-6129 – Apple Mac OSX 10.4.x - Mach-O Binary Loading Integer Overflow
https://notcve.org/view.php?id=CVE-2006-6129
27 Nov 2006 — Integer overflow in the fatfile_getarch2 in Apple Mac OS X allows local users to cause a denial of service and possibly execute arbitrary code via a crafted Mach-O Universal program that triggers memory corruption. Desbordamiento de enteros en fatfile_getarch2 en Apple Mac OS X permite a un usuario local provocar denegación de servicio y posiblemente ejecutar código de su elección a través del programa Mach-O Universal manipulado que dispara una corrupción de memoria. • https://www.exploit-db.com/exploits/29190 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 2CVE-2006-6127
https://notcve.org/view.php?id=CVE-2006-6127
27 Nov 2006 — Apple Mac OS X kernel allows local users to cause a denial of service via a process that uses kevent to register a queue and an event, then fork a child process that uses kevent to register an event for the same queue as the parent. Núcleo Apple Mac OS X permite a un usuario local provocar denegación de servicio a través de un proceso que usa kevent para registrar una cola o un evento, entonces se bifurca en un proceso hijo que usa kevent para registrar un evento para la misma cola que la del padre. • http://docs.info.apple.com/article.html?artnum=307041 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2006-6126
https://notcve.org/view.php?id=CVE-2006-6126
27 Nov 2006 — Apple Mac OS X allows local users to cause a denial of service (memory corruption) via a crafted Mach-O binary with a malformed load_command data structure. Apple Mac OS X permite a un usuario local provocar denegación de servicio (memoria corrupta) a través del binario manipulado Mach-O con una estructura de datos mal formada load_command. • http://projects.info-pull.com/mokb/MOKB-23-11-2006.html •
CVSS: 6.5EPSS: 46%CPEs: 2EXPL: 4CVE-2006-6062 – Apple Mac OSX 10.4.8 - UDIF Disk Image Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-6062
22 Nov 2006 — Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a malformed UDTO HFS+ disk image, such as with "bad sectors," which triggers memory corruption. Vulnerabilidad no especificada en Apple Mac OSX 10.4.8, y posiblemente otras versiones, permite a atacantes remotos provocar una denegación de servicio (caída) mediante una imagen de disco UDTO HFS+ mal formada, como por ejemplo con "sectores dañados", lo cual provoca u... • https://www.exploit-db.com/exploits/29144 •