| Max CVSS | 10.0 | Min CVSS | 4.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-0724 | 6.9 |
The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.
|
29-07-2017 - 01:30 | 13-03-2007 - 22:19 | |
| CVE-2007-0734 | 5.4 |
fsck, as used by the AirPort Disk feature of the AirPort Extreme Base Station with 802.11n before Firmware Update 7.1, and by Apple Mac OS X 10.3.9 through 10.4.9, does not properly enforce password protection of a USB hard drive, which allows contex
|
29-07-2017 - 01:30 | 10-04-2007 - 22:19 | |
| CVE-2007-0736 | 9.3 |
Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via crafted requests to portmap.
|
29-07-2017 - 01:30 | 24-04-2007 - 17:19 | |
| CVE-2007-0747 | 7.2 |
load_webdav in Apple Mac OS X 10.3.9 through 10.4.9 does not properly clean the environment when mounting a WebDAV filesystem, which allows local users to gain privileges by setting unspecified environment variables.
|
03-07-2013 - 15:33 | 24-04-2007 - 17:19 | |
| CVE-2007-0742 | 7.8 |
The WebFoundation framework in Apple Mac OS X 10.3.9 and earlier allows subdomain cookies to be accessed by the parent domain, which allows remote attackers to obtain sensitive information.
|
08-03-2011 - 02:50 | 24-04-2007 - 17:19 | |
| CVE-2007-0746 | 10.0 |
Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute arbitrary code via a "crafted SIP packet when initializing an audio/video conference".
|
08-03-2011 - 02:50 | 24-04-2007 - 17:19 | |
| CVE-2007-0743 | 4.9 |
URLMount in Apple Mac OS X 10.3.9 through 10.4.9 passes the username and password credentials for mounting filesystems on SMB servers as command line arguments to the mount_sub command, which may allow local users to obtain sensitive information by l
|
08-03-2011 - 02:50 | 24-04-2007 - 17:19 | |
| CVE-2007-0732 | 7.2 |
Unspecified vulnerability in the CoreServices daemon in CarbonCore in Apple Mac OS X 10.4 through 10.4.9 allows local users to gain privileges via unspecified vectors involving "obtaining a send right to [the] Mach task port." The vendor has addresse
|
08-03-2011 - 02:50 | 24-04-2007 - 16:19 | |
| CVE-2007-0741 | 7.5 |
Buffer overflow in natd in network_cmds in Apple Mac OS X 10.3.9 through 10.4.9, when Internet Sharing is enabled, allows remote attackers to execute arbitrary code via malformed RTSP packets.
|
08-03-2011 - 02:50 | 24-04-2007 - 17:19 | |
| CVE-2007-0735 | 9.3 |
Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors involving crafted web pages that trigg
|
08-03-2011 - 02:50 | 24-04-2007 - 17:19 |