Mac Os X Server CVEs and Security Vulnerabilities

Filtered by vendor Apple Subscriptions

Filtered by product Mac Os X Server Subscriptions

Search

Switch to Advanced Search (Beta)

Total 817 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2011-0183	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Libinfo in Apple Mac OS X before 10.6.7 does not properly handle an unspecified integer field in an NFS RPC packet, which allows remote attackers to cause a denial of service (lockd, statd, mountd, or portmap outage) via a crafted packet, related to an "integer truncation issue."
CVE-2011-0185	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file.
CVE-2011-0193	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Multiple buffer overflows in Image RAW in Apple Mac OS X before 10.6.7 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Canon RAW image.
CVE-2011-0194	1 Apple	3 Imageio, Mac Os X, Mac Os X Server	2025-04-11	N/A
Integer overflow in ImageIO in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TIFF image with JPEG encoding.
CVE-2011-0201	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Off-by-one error in the CoreFoundation framework in Apple Mac OS X before 10.6.8 allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a CFString object that triggers a buffer overflow.
CVE-2011-0202	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Integer overflow in CoreGraphics in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted embedded Type 1 font in a PDF document.
CVE-2010-0540	2 Apple, Redhat	3 Mac Os X, Mac Os X Server, Enterprise Linux	2025-04-11	N/A
Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers to hijack the authentication of administrators for requests that change settings.
CVE-2010-0513	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Stack-based buffer overflow in PS Normalizer in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PostScript document.
CVE-2010-0512	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
The Accounts Preferences implementation in Apple Mac OS X 10.6 before 10.6.3, when a network account server is used, does not support Login Window access control that is based solely on group membership, which allows attackers to bypass intended access restrictions by entering login credentials.
CVE-2010-0514	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.261 encoding.
CVE-2010-0545	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, does not set the expected file ownerships during an "Apply to enclosed items" action, which allows local users to bypass intended access restrictions via normal filesystem operations.
CVE-2010-0504	1 Apple	1 Mac Os X Server	2025-04-11	N/A
Multiple stack-based buffer overflows in iChat Server in Apple Mac OS X Server before 10.6.3 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
CVE-2011-0230	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Buffer overflow in the ATSFontDeactivate API in Apple Type Services (ATS) in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
CVE-2010-1388	2 Apple, Microsoft	7 Mac Os X, Mac Os X Server, Safari and 4 more	2025-04-11	N/A
WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6, and before 4.1 on Mac OS X 10.4, does not properly handle clipboard (1) drag and (2) paste operations for URLs, which allows user-assisted remote attackers to read arbitrary files via a crafted HTML document.
CVE-2011-0212	1 Apple	1 Mac Os X Server	2025-04-11	N/A
servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML-RPC request containing an entity declaration in conjunction with an entity reference, related to an XML External Entity (aka XXE) issue.
CVE-2010-0060	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
CoreAudio in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted audio content with QDMC encoding.
CVE-2011-0178	1 Apple	3 Carboncore, Mac Os X, Mac Os X Server	2025-04-11	N/A
The FSFindFolder API in CarbonCore in Apple Mac OS X before 10.6.7 provides a world-readable directory in response to a call with the kTemporaryFolderType flag, which allows local users to obtain potentially sensitive information by accessing this directory.
CVE-2011-0177	1 Apple	2 Mac Os X, Mac Os X Server	2025-04-11	N/A
Multiple buffer overflows in Apple Type Services (ATS) in Apple Mac OS X before 10.6.7 allow remote attackers to execute arbitrary code via a document that contains a crafted SFNT table in an embedded font.
CVE-2011-0210	1 Apple	3 Mac Os X, Mac Os X Server, Quicktime	2025-04-11	N/A
QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted sample tables in a movie file.
CVE-2011-0173	1 Apple	3 Applescript, Mac Os X, Mac Os X Server	2025-04-11	N/A
Multiple format string vulnerabilities in AppleScript in Apple Mac OS X before 10.6.7 allow context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via format string specifiers in a (1) display dialog or (2) display alert command in a dialog in an AppleScript Studio application.

« first previous Page 7 of 41. next last »