National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • CPE Product Version: cpe:/o:apple:mac_os_x:10.6.1
There are 2,890 matching records.
Displaying matches 1641 through 1660.
Vuln ID Summary CVSS Severity
CVE-2015-5891

The SMB implementation in the kernel in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.

Published: October 09, 2015; 01:59:25 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5890

IOGraphics in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5871, CVE-2015-5872, and CVE-2015-5873.

Published: October 09, 2015; 01:59:24 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5889

rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.

Published: October 09, 2015; 01:59:23 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5888

The Install Framework Legacy component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving a privileged executable file.

Published: October 09, 2015; 01:59:22 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5887

The TLS Handshake Protocol implementation in Secure Transport in Apple OS X before 10.11 accepts a Certificate Request message within a session in which no Server Key Exchange message has been sent, which allows remote attackers to have an unspecified impact via crafted TLS data.

Published: October 09, 2015; 01:59:21 AM -04:00
    V2: 10.0 HIGH
CVE-2015-5884

The Mail Drop feature in Mail in Apple OS X before 10.11 mishandles encryption parameters for attachments, which makes it easier for remote attackers to obtain sensitive information by sniffing the network during transmission of an S/MIME e-mail message with a large attachment.

Published: October 09, 2015; 01:59:20 AM -04:00
    V2: 3.3 LOW
CVE-2015-5883

The bidirectional text-display and text-selection implementations in Terminal in Apple OS X before 10.11 interpret directional override formatting characters differently, which allows remote attackers to spoof the content of a text document via a crafted character sequence.

Published: October 09, 2015; 01:59:19 AM -04:00
    V2: 5.0 MEDIUM
CVE-2015-5878

Notes in Apple OS X before 10.11 misparses links, which allows local users to obtain sensitive information via unspecified vectors.

Published: October 09, 2015; 01:59:18 AM -04:00
    V2: 2.1 LOW
CVE-2015-5877

The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5830.

Published: October 09, 2015; 01:59:17 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5875

Cross-site scripting (XSS) vulnerability in Notes in Apple OS X before 10.11 allows local users to inject arbitrary web script or HTML via crafted text.

Published: October 09, 2015; 01:59:16 AM -04:00
    V2: 2.1 LOW
CVE-2015-5873

IOGraphics in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5871, CVE-2015-5872, and CVE-2015-5890.

Published: October 09, 2015; 01:59:15 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5872

IOGraphics in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5871, CVE-2015-5873, and CVE-2015-5890.

Published: October 09, 2015; 01:59:14 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5871

IOGraphics in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5872, CVE-2015-5873, and CVE-2015-5890.

Published: October 09, 2015; 01:59:13 AM -04:00
    V2: 7.2 HIGH
CVE-2015-5870

The debugging interfaces in the kernel in Apple OS X before 10.11 allow local users to obtain sensitive memory-layout information via unspecified vectors.

Published: October 09, 2015; 01:59:12 AM -04:00
    V2: 2.1 LOW
CVE-2015-5866

IOHIDFamily in Apple OS X before 10.11 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Published: October 09, 2015; 01:59:11 AM -04:00
    V2: 9.3 HIGH
CVE-2015-5865

IOGraphics in Apple OS X before 10.11 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.

Published: October 09, 2015; 01:59:10 AM -04:00
    V2: 4.3 MEDIUM
CVE-2015-5864

IOAudioFamily in Apple OS X before 10.11 allows local users to obtain sensitive kernel memory-layout information via unspecified vectors.

Published: October 09, 2015; 01:59:09 AM -04:00
    V2: 2.1 LOW
CVE-2015-5854

The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors.

Published: October 09, 2015; 01:59:08 AM -04:00
    V2: 2.1 LOW
CVE-2015-5853

AirScan in Apple OS X before 10.11 allows man-in-the-middle attackers to obtain eSCL packet payload data via unspecified vectors.

Published: October 09, 2015; 01:59:07 AM -04:00
    V2: 3.3 LOW
CVE-2015-5849

The filtering implementation in AppleEvents in Apple OS X before 10.11 mishandles attempts to send events to a different user, which allows attackers to bypass intended access restrictions by leveraging a screen-sharing connection.

Published: October 09, 2015; 01:59:06 AM -04:00
    V2: 6.8 MEDIUM