CVSS: 10.0EPSS: 19%CPEs: 8EXPL: 0CVE-2007-0748
https://notcve.org/view.php?id=CVE-2007-0748
13 May 2007 — Heap-based buffer overflow in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allows remote attackers to execute arbitrary code via multiple trackID values in a SETUP RTSP request. Desbordamiento de búfer basado en montículo en Apple Darwin Streaming Proxy, cuando utiliza Darwin Streaming Server versiones anteriores a 5.5.5, permite a atacantes remotos ejecutar código de su elección mediante múltiples valores trackID en una petición SETUP RTSP. • http://docs.info.apple.com/article.html?artnum=305495 •
CVSS: 10.0EPSS: 19%CPEs: 8EXPL: 0CVE-2007-0749
https://notcve.org/view.php?id=CVE-2007-0749
13 May 2007 — Multiple stack-based buffer overflows in the is_command function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allow remote attackers to execute arbitrary code via a long (1) cmd or (2) server value in an RTSP request. Múltiples desbordamientos de búfer basado en pila en la función is_command en proxy.c en Apple Darwin Streaming Proxy, cuando se utiliza en Darwin Streaming Server anterior a 5.5.5, permite a atacantes remotos ejecutar código de su elección a tra... • http://docs.info.apple.com/article.html?artnum=305495 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2195
https://notcve.org/view.php?id=CVE-2005-2195
17 Jul 2005 — Apple Darwin Streaming Server 5.5 and earlier allows remote attackers to cause a denial of service (application crash) via a URL with a filename containing a .cgi extension and an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1, a different vulnerability than CVE-2003-0421 and CVE-2003-0502. Apple Darwin Streaming Server 5.5 y anteriores permite que atacantes remotos causen una denegación de servicio (caída de la aplicación) mediante una URL con un nombre de fichero con extensión .cgi y nombre de di... • http://marc.info/?l=bugtraq&m=112126999514361&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 1CVE-2004-1123
https://notcve.org/view.php?id=CVE-2004-1123
05 Dec 2004 — Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. • http://www.idefense.com/application/poi/display?id=159&type=vulnerabilities •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2004-1083
https://notcve.org/view.php?id=CVE-2004-1083
03 Dec 2004 — Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html • CWE-178: Improper Handling of Case Sensitivity •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1081
https://notcve.org/view.php?id=CVE-2004-1081
02 Dec 2004 — The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1084
https://notcve.org/view.php?id=CVE-2004-1084
02 Dec 2004 — Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 2.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1085
https://notcve.org/view.php?id=CVE-2004-1085
02 Dec 2004 — Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.8EPSS: 3%CPEs: 35EXPL: 0CVE-2004-1086
https://notcve.org/view.php?id=CVE-2004-1086
02 Dec 2004 — Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1087
https://notcve.org/view.php?id=CVE-2004-1087
02 Dec 2004 — Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •