RSS   Vulnerabilities for 'Ichat'   RSS

2007-08-03
 
CVE-2007-3748

 

 
Buffer overflow in the UPnP IGD (Internet Gateway Device Standardized Device Control Protocol) implementation in iChat on Apple Mac OS X 10.3.9 and 10.4.10 allows network-adjacent remote attackers to execute arbitrary code via a crafted packet.

 
 
CVE-2007-3747

 

 
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not restrict object instantiation and manipulation to valid heap addresses, which allows remote attackers to execute arbitrary code via a crafted applet.

 
 
CVE-2007-3746

 

 
The Java interface to CoreAudio on Apple Mac OS X 10.3.9 and 10.4.10 does not properly check the bounds of heap read and write operations, which allows remote attackers to execute arbitrary code via a crafted applet.

 
2007-02-16
 
CVE-2007-0710

CWE-399
 

 
The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote attackers to cause a denial of service (persistent application crash) via unspecified vectors, possibly related to CVE-2007-0614.

 
2007-01-31
 
CVE-2007-0614

 

 
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 allows remote attackers to cause a denial of service (persistent application crash) via a crafted phsh hash attribute in a TXT key.

 
 
CVE-2007-0613

 

 
The Bonjour functionality in mDNSResponder, iChat 3.1.6, and InstantMessage framework 428 in Apple Mac OS X 10.4.8 does not check for duplicate entries when adding newly discovered available contacts, which allows remote attackers to cause a denial of service (disrupted communication) via a flood of duplicate _presence._tcp mDNS queries.

 
2007-01-22
 
CVE-2007-0021

 

 
Format string vulnerability in Apple iChat 3.1.6 allows remote attackers to cause a denial of service (null pointer dereference and application crash) and possibly execute arbitrary code via format string specifiers in an aim:// URI.

 
2004-12-23
 
CVE-2004-0873

 

 
Apple iChat AV 2.1, AV 2.0, and 1.0.1 allows remote attackers to execute arbitrary programs via a "link" that references the program.

 

 >>> Vendor: Apple 126 Products
IOS
Appleshare
A UX
JAVA
Mac os
Mac os x
Ichat server
Appleshare mail server
Webobjects
Mac os runtime for java
CUPS
Quicktime
Personal web sharing
Claris emailer
Mac os x server
Tcp ip configuration utility
Darwin streaming server
Quicktime streaming server
Quicktime darwin mp3 broadcaster
802.11n
Safari
Afp server
ICAL
Ichat
Ichat av
Remote desktop
Apache mod digest apple
Xcode
Itunes
Airport express
Airport extreme
Quicktime pictureviewer
Applescript
Terminal
Keynote
Airport card
MAIL
Weblog server
Textedit
Imageio
XSAN
Bomarchivehelper
Iphoto
Preview
Webkit
Minimal slp service agent
Software update
Cfnetwork
Installer
Webcore
Instant message framework
Mdnsresponder
Imovie
Mac os x preview.app
Server manager
Xserve lights-out management
Iphone
Pdfkit
Quartz composer
Core audio technologies
Iphone os
Mobile safari
Aperture
Podcast producer
Apple airport extreme base station
Core image fun house
Xcode tools
Carboncore
Coregraphics
Data detectors engine
Quicklook
Bonjour
Motion
Ipod touch
Iphone configuration web utility
Quicktime mpeg-2 playback component
Airport express base station firmware
Airport extreme base station firmware
Time capsule
Garageband
Java 1.4
Java 1.5
Java 1.6
Airport utility
Libsecurity
Apple type services
Apple tv
Ipad2
Apple remote desktop
Swift
Olive toast documents pro file viewer
Airport base station firmware
Os x server
Pages
Boot camp
Watch os
Watchos
Iwork
Numbers
Ibooks author
See all Products for Vendor Apple


Copyright 2024, cxsecurity.com

 

Back to Top