Apple macOS vulnerabilities

CVE-2014-1252 [HIGH] CWE-415 CVE-2014-1252: Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers t Double free vulnerability in Apple Pages 2.x before 2.1 and 5.x before 5.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Microsoft Word file.

CVE-2013-5987 [HIGH] CVE-2013-5987: Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 allows local Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 allows local users to bypass intended access restrictions for the GPU and gain privileges via unknown vectors.

CVE-2013-6420 [HIGH] CWE-119 CVE-2013-6420: The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not

CVE-2013-7127 [LOW] CWE-310 CVE-2013-7127: Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.

CVE-2012-6151 [MEDIUM] CWE-399 CVE-2012-6151: Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT reques Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, and hang) by causing the AgentX subagent to timeout.

CVE-2013-6712 [MEDIUM] CWE-119 CVE-2013-6712: The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restr The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification.

CVE-2013-6799 [MEDIUM] CVE-2013-6799: Apple Mac OS X 10.9 allows local users to cause a denial of service (memory corruption or panic) by Apple Mac OS X 10.9 allows local users to cause a denial of service (memory corruption or panic) by creating a hard link to a directory. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-0105.

CVE-2013-5179 [HIGH] CWE-264 CVE-2013-5179: App Sandbox in Apple Mac OS X before 10.9 allows attackers to bypass intended sandbox restrictions v App Sandbox in Apple Mac OS X before 10.9 allows attackers to bypass intended sandbox restrictions via a crafted app that uses the LaunchServices interface to specify process arguments.

CVE-2013-5172 [HIGH] CWE-189 CVE-2013-5172: The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 dig The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service (panic) by triggering a digest operation, as demonstrated by an IPSec connection.

CVE-2013-5135 [HIGH] CWE-134 CVE-2013-5135: Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers in a VNC username.

CVE-2013-5175 [MEDIUM] CWE-20 CVE-2013-5175: The kernel in Apple Mac OS X before 10.9 allows local users to obtain sensitive information or cause The kernel in Apple Mac OS X before 10.9 allows local users to obtain sensitive information or cause a denial of service (out-of-bounds read and system crash) via a crafted Mach-O file.

CVE-2013-5180 [MEDIUM] CWE-310 CVE-2013-5180: The srandomdev function in Libc in Apple Mac OS X before 10.9, when the kernel random-number generat The srandomdev function in Libc in Apple Mac OS X before 10.9, when the kernel random-number generator is unavailable, produces predictable values instead of the intended random values, which makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms by leveraging knowledge of these values, related to a compiler-opti

CVE-2013-5167 [MEDIUM] CWE-16 CVE-2013-5167: CFNetwork in Apple Mac OS X before 10.9 does not properly support Safari's deletion of session cooki CFNetwork in Apple Mac OS X before 10.9 does not properly support Safari's deletion of session cookies in response to a reset operation, which makes it easier for remote web servers to track users via Set-Cookie HTTP headers.

CVE-2013-5165 [MEDIUM] CWE-264 CVE-2013-5165: socketfilterfw in Application Firewall in Apple Mac OS X before 10.9 does not properly implement the socketfilterfw in Application Firewall in Apple Mac OS X before 10.9 does not properly implement the --blockApp option, which allows remote attackers to bypass intended access restrictions via a network connection to an application for which blocking was configured.

CVE-2013-5190 [MEDIUM] CWE-264 CVE-2013-5190: Smart Card Services in Apple Mac OS X before 10.9 does not properly implement certificate-revocation Smart Card Services in Apple Mac OS X before 10.9 does not properly implement certificate-revocation checks, which allows remote attackers to cause a denial of service (Smart Card usage outage) by interfering with the revocation-check procedure.

CVE-2013-5166 [MEDIUM] CVE-2013-5166: The Bluetooth USB host controller in Apple Mac OS X before 10.9 prematurely deletes interfaces, whic The Bluetooth USB host controller in Apple Mac OS X before 10.9 prematurely deletes interfaces, which allows local users to cause a denial of service (system crash) via a crafted application.

CVE-2013-5189 [MEDIUM] CWE-264 CVE-2013-5189: Apple Mac OS X before 10.9 does not preserve a certain administrative system-preferences setting acr Apple Mac OS X before 10.9 does not preserve a certain administrative system-preferences setting across software updates, which allows context-dependent attackers to bypass intended access restrictions in opportunistic circumstances by leveraging an unintended security configuration after the completion of an update.

CVE-2013-5185 [MEDIUM] CWE-310 CVE-2013-5185: The ldapsearch command-line program in OpenLDAP in Apple Mac OS X before 10.9 does not properly proc The ldapsearch command-line program in OpenLDAP in Apple Mac OS X before 10.9 does not properly process the minssf configuration setting, which allows remote attackers to obtain sensitive information by leveraging unintended weak encryption and sniffing the network.

CVE-2013-5170 [MEDIUM] CWE-119 CVE-2013-5170: Buffer underflow in CoreGraphics in Apple Mac OS X before 10.9 allows remote attackers to execute ar Buffer underflow in CoreGraphics in Apple Mac OS X before 10.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.

CVE-2013-5184 [MEDIUM] CWE-399 CVE-2013-5184: The kernel in Apple Mac OS X before 10.9 does not properly check for errors during the processing of The kernel in Apple Mac OS X before 10.9 does not properly check for errors during the processing of multicast Wi-Fi packets, which allows remote attackers to cause a denial of service (system crash) by leveraging presence in an 802.11 network's coverage area.