Apple Mac OS X 10.8.1

CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain sensitive information by reading cache files.

Published: 2014-11-18T11:00:00.000Z
Updated: 2024-08-06T11:20:25.757Z

The "System Profiler About This Mac" component in Apple OS X before 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote attackers to obtain sensitive information via unspecified vectors.

Published: 2014-11-18T11:00:00.000Z
Updated: 2024-08-06T11:20:25.967Z

Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive information via unspecified vectors.

Published: 2014-11-18T11:00:00.000Z
Updated: 2024-08-06T11:20:25.917Z

Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted application.

Published: 2014-07-01T10:00:00.000Z
Updated: 2024-08-06T09:42:36.245Z

Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.

Published: 2014-07-01T10:00:00.000Z
Updated: 2024-08-06T09:42:34.914Z

Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute arbitrary code via a crafted application.

Published: 2014-07-01T10:00:00.000Z
Updated: 2024-08-06T09:42:35.649Z

Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to execute arbitrary code via a crafted application.

Published: 2014-07-01T10:00:00.000Z
Updated: 2024-08-06T09:42:36.063Z

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call.

Published: 2014-07-01T10:00:00.000Z
Updated: 2024-08-06T09:42:34.866Z

The Intel Graphics Driver in Apple OS X through 10.9.2 does not properly validate a certain pointer, which allows attackers to execute arbitrary code via a crafted application.

Published: 2014-04-23T10:00:00.000Z
Updated: 2024-08-06T09:34:41.259Z

WindowServer in Apple OS X through 10.9.2 does not prevent session creation by a sandboxed application, which allows attackers to bypass the sandbox protection mechanism and execute arbitrary code via a crafted application.

Published: 2014-04-23T10:00:00.000Z
Updated: 2024-08-06T09:34:41.239Z

Secure Transport in Apple iOS before 7.1.1, Apple OS X 10.8.x and 10.9.x through 10.9.2, and Apple TV before 6.1.1 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-the-middle attackers to obtain sensitive information or modify TLS session data via a "triple handshake attack."

Published: 2014-04-23T10:00:00.000Z
Updated: 2024-08-06T09:34:41.267Z

QuickLook in Apple OS X through 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.

Published: 2014-02-27T01:00:00.000Z
Updated: 2024-08-06T09:34:41.184Z

Heap-based buffer overflow in CoreAnimation in Apple OS X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image.

Published: 2014-02-27T01:00:00.000Z
Updated: 2024-08-06T09:34:41.065Z

CFNetwork in Apple OS X through 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate attackers to bypass intended access restrictions by leveraging an unattended workstation.

Published: 2014-02-27T01:00:00.000Z
Updated: 2024-08-06T09:34:41.201Z

Apple Type Services (ATS) in Apple OS X before 10.9.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Type 1 font that is embedded in a document.

Published: 2014-02-27T01:00:00.000Z
Updated: 2024-08-06T09:34:41.191Z

The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a request with a crafted (1) port or (2) port number.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T02:58:05.037Z

The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Guest sessions.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T00:20:43.609Z

Smart Card Services in Apple Mac OS X before 10.9 does not properly implement certificate-revocation checks, which allows remote attackers to cause a denial of service (Smart Card usage outage) by interfering with the revocation-check procedure.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T22:35:35.925Z

Apple Mac OS X before 10.9 does not preserve a certain administrative system-preferences setting across software updates, which allows context-dependent attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended security configuration after the completion of an update.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T02:26:23.153Z

The Screen Lock implementation in Apple Mac OS X before 10.9, when hibernation and autologin are enabled, does not require a password for a transition out of hibernation, which allows physically proximate attackers to obtain access by visiting an unattended workstation in the hibernating state.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T22:55:49.652Z

The Screen Lock implementation in Apple Mac OS X before 10.9 does not immediately accept Keychain Status menu Lock Screen commands, and instead incorrectly relies on a certain timeout setting, which allows physically proximate attackers to obtain sensitive information by reading a screen that should have transitioned into the locked state.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T19:10:15.409Z

Power Management in Apple Mac OS X before 10.9 does not properly handle the interaction between locking and power assertions, which allows physically proximate attackers to obtain sensitive information by reading a screen that should have transitioned into the locked state.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T23:20:50.181Z

The ldapsearch command-line program in OpenLDAP in Apple Mac OS X before 10.9 does not properly process the minssf configuration setting, which allows remote attackers to obtain sensitive information by leveraging unintended weak encryption and sniffing the network.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T18:23:29.126Z

The kernel in Apple Mac OS X before 10.9 does not properly check for errors during the processing of multicast Wi-Fi packets, which allows remote attackers to cause a denial of service (system crash) by leveraging presence in an 802.11 network's coverage area.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T02:47:39.473Z

Mail in Apple Mac OS X before 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote attackers to obtain sensitive information by sniffing the network.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T17:02:48.945Z

Mail in Apple Mac OS X before 10.9 allows remote attackers to spoof the existence of a cryptographic signature for an e-mail message by using the multipart/signed content type within an unsigned message.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T01:51:18.620Z

The auto-configuration feature in Mail in Apple Mac OS X before 10.9 selects plaintext authentication for unspecified servers that support CRAM-MD5 authentication, which allows remote attackers to obtain sensitive information by sniffing the network.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T18:44:41.524Z

The srandomdev function in Libc in Apple Mac OS X before 10.9, when the kernel random-number generator is unavailable, produces predictable values instead of the intended random values, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging knowledge of these values, related to a compiler-optimization issue.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T03:58:41.111Z

App Sandbox in Apple Mac OS X before 10.9 allows attackers to bypass intended sandbox restrictions via a crafted app that uses the LaunchServices interface to specify process arguments.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-08-06T17:06:51.799Z

LaunchServices in Apple Mac OS X before 10.9 does not properly restrict Unicode characters in filenames, which allows context-dependent attackers to spoof file extensions via a crafted character sequence.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-08-06T17:06:51.811Z

The kernel in Apple Mac OS X before 10.9 allows local users to cause a denial of service (panic) via an invalid iovec structure.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T23:11:40.442Z

The kernel in Apple Mac OS X before 10.9 does not properly handle integer values during unspecified tty device operations, which allows local users to cause a denial of service (system hang) by triggering a truncation error.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T20:36:43.105Z

The kernel in Apple Mac OS X before 10.9 allows local users to obtain sensitive information or cause a denial of service (out-of-bounds read and system crash) via a crafted Mach-O file.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T18:13:53.218Z

Integer signedness error in the kernel in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a crafted tty read operation.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T00:41:59.248Z

The random-number generator in the kernel in Apple Mac OS X before 10.9 provides lengthy exclusive access for processing of large requests, which allows local users to cause a denial of service (temporary generator outage) via an application that requires many random numbers.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T03:07:44.523Z

The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service (panic) by triggering a digest operation, as demonstrated by an IPSec connection.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T23:10:19.804Z

CoreGraphics in Apple Mac OS X before 10.9 allows local users to bypass secure input mode and log an arbitrary application's keystrokes via a hotkey event registration.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T16:58:39.548Z

Buffer underflow in CoreGraphics in Apple Mac OS X before 10.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-08-06T17:06:52.157Z

CoreGraphics in Apple Mac OS X before 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate attackers to obtain sensitive information by reading the screen.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T17:23:03.154Z

Console in Apple Mac OS X before 10.9 allows user-assisted remote attackers to execute arbitrary applications by triggering a log entry with a crafted attached URL.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T20:11:59.186Z

CFNetwork in Apple Mac OS X before 10.9 does not properly support Safari's deletion of session cookies in response to a reset operation, which makes it easier for remote web servers to track users via Set-Cookie HTTP headers.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T00:22:03.164Z

The Bluetooth USB host controller in Apple Mac OS X before 10.9 prematurely deletes interfaces, which allows local users to cause a denial of service (system crash) via a crafted application.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T17:47:38.169Z

socketfilterfw in Application Firewall in Apple Mac OS X before 10.9 does not properly implement the --blockApp option, which allows remote attackers to bypass intended access restrictions via a network connection to an application for which blocking was configured.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-16T18:34:35.904Z

Directory Services in Apple Mac OS X before 10.8.5 Supplemental Update allows local users to bypass password-based authentication and modify arbitrary Directory Services records via unspecified vectors.

Published: 2013-10-04T10:00:00.000Z
Updated: 2024-09-16T23:50:38.861Z

Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username.

Published: 2013-10-24T01:00:00.000Z
Updated: 2024-09-17T01:36:47.689Z

The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not properly validate the data for file actions and port actions, which allows local users to (1) cause a denial of service (panic) via a size value that is inconsistent with a header count field, or (2) obtain sensitive information from kernel heap memory via a certain size value in conjunction with a crafted buffer.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-08-06T16:30:48.213Z

The mach_port_space_info function in osfmk/ipc/mach_debug.c in the XNU kernel in Apple Mac OS X 10.8.x does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel heap memory via a crafted call.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-08-06T16:30:49.360Z

The fill_pipeinfo function in bsd/kern/sys_pipe.c in the XNU kernel in Apple Mac OS X 10.8.x allows local users to defeat the KASLR protection mechanism via the PROC_PIDFDPIPEINFO option to the proc_info system call for a kernel pipe handle.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-09-16T22:46:04.984Z

sys/openbsd/stack_protector.c in libc in Apple iOS 6.1.3 and Mac OS X 10.8.x does not properly parse the Apple strings employed in the user-space stack-cookie implementation, which allows local users to bypass cookie randomization by executing a program with a call-path beginning with the stack-guard= substring, as demonstrated by an iOS untethering attack or an attack against a setuid Mac OS X program.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-08-06T16:30:49.891Z

The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not prevent use of the _POSIX_SPAWN_DISABLE_ASLR and _POSIX_SPAWN_ALLOW_DATA_EXEC flags for setuid and setgid programs, which allows local users to bypass intended access restrictions via a wrapper program that calls the posix_spawnattr_setflags function.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-09-16T23:45:48.104Z

Screen Lock in Apple Mac OS X before 10.8.5 does not properly track sessions, which allows remote authenticated users to bypass locking by leveraging screen-sharing access.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-09-16T16:13:33.750Z

QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted idsc atom in a QuickTime movie file.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-08-06T14:49:20.402Z

Power Management in Apple Mac OS X before 10.8.5 does not properly perform locking upon occurrences of a power assertion, which allows physically proximate attackers to bypass intended access restrictions by visiting an unattended workstation on which a locking failure had prevented the startup of the screen saver.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-09-16T17:54:29.418Z

mdmclient in Mobile Device Management in Apple Mac OS X before 10.8.5 places a password on the command line, which allows local users to obtain sensitive information by listing the process.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-09-16T22:19:48.017Z

The kernel in Apple Mac OS X before 10.8.5 allows remote attackers to cause a denial of service (panic) via crafted IGMP packets that leverage incorrect, extraneous code in the IGMP parser.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-09-17T02:06:50.701Z

The IPSec implementation in Apple Mac OS X before 10.8.5, when Hybrid Auth is used, does not verify X.509 certificates from security gateways, which allows man-in-the-middle attackers to spoof security gateways and obtain sensitive information via a crafted certificate.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-08-06T14:49:20.319Z

Installer in Apple Mac OS X before 10.8.5 provides an option to continue a package's installation after encountering a revoked certificate, which might allow user-assisted remote attackers to execute arbitrary code via a crafted package.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-09-16T18:29:10.914Z

Buffer overflow in ImageIO in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG2000 data in a PDF document.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-08-06T14:49:20.221Z

Buffer overflow in CoreGraphics in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JBIG2 data in a PDF document.

Published: 2013-09-16T01:00:00.000Z
Updated: 2024-08-06T14:49:20.185Z

Disk Management in Apple Mac OS X before 10.8.4 does not properly authenticate attempts to disable FileVault, which allows local users to cause a denial of service (loss of encryption functionality) via an unspecified command line.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-09-17T03:34:11.764Z

Stack consumption vulnerability in CoreAnimation in Apple Mac OS X before 10.8.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text glyph in a URL encountered by Safari.

Published: 2013-06-05T10:00:00.000Z
Updated: 2024-09-16T23:01:33.553Z

IOAcceleratorFamily in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted graphics image.

Published: 2013-03-15T01:00:00.000Z
Updated: 2024-09-16T19:50:57.189Z

Messages in Apple Mac OS X before 10.8.3 allows remote attackers to bypass the FaceTime call-confirmation prompt via a crafted FaceTime: URL.

Published: 2013-03-15T01:00:00.000Z
Updated: 2024-09-16T16:32:47.628Z

Login Window in Apple Mac OS X before 10.8.3 does not prevent application launching with the VoiceOver feature, which allows physically proximate attackers to bypass authentication and make arbitrary System Preferences changes via unspecified use of the keyboard.

Published: 2013-03-15T01:00:00.000Z
Updated: 2024-09-16T22:30:35.207Z

Mobile Accounts in Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 saves password hashes for external-account use even if external accounts are not enabled, which might allow remote attackers to determine passwords via unspecified access to a mobile account.

Published: 2012-09-20T21:00:00.000Z
Updated: 2024-09-16T17:08:01.000Z

Apple Mac OS X before 10.7.5 and 10.8.x before 10.8.2 allows local users to read passwords entered into Login Window (aka LoginWindow) or Screen Saver Unlock by installing an input method that intercepts keystrokes.

Published: 2012-09-20T21:00:00.000Z
Updated: 2024-08-06T20:13:51.624Z