[ home ] [ contents ] [ platforms ] [ shellcode ] [ search ] [ cracker ] [ links ] [ rss ] [ archive ]
milw0rm
[ osX - remote ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-07-24 Mozilla Firefox 3.5 (Font tags) Remote Buffer Overflow Exploit (osx) 14047 R D Dr_IDE
2009-06-03 Apple iTunes 8.1.1 (ITMS) Multiple Protocol Handler BOF Exploit (meta) 7504 R D Will Drewry
2009-05-20 Mac OS X Java applet Remote Deserialization Remote PoC (updated) 7918 R D Landon Fuller
2008-07-06 Safari + Quicktime <= 7.3 RTSP Content-Type Remote BOF Exploit 9942 R D krafty
2007-01-03 Apple Quicktime <= 7.1.3 (HREFTrack) Cross-Zone Scripting Exploit 7353 R D MoAB
2006-03-13 Apple Mac OS X 10.4.5 Mail.app (Real Name) Buffer Overflow Exploit 11015 R D Kevin Finisterre
2006-02-22 Mac OS X Safari Browser (Safe File) Remote Code Execution Exploit 12322 RM D H D Moore
2006-02-08 Mozilla Firefox 1.5 location.QueryInterface() Code Execution (osx) 14109 RM D H D Moore
2005-10-20 Veritas NetBackup <= 6.0 (bpjava-msvc) Remote Exploit (OS X) 7430 R D Kevin Finisterre
2005-01-16 Apple iTunes Playlist Local Parsing Buffer Overflow Exploit 7287 R D nemo
2004-08-13 Mac OS X <= 10.3.3 AppleFileServer Remote Root Overflow Exploit 7559 RM D Dino Dai Zovi
2003-09-11 4D WebSTAR FTP Server Suite Remote Buffer Overflow Exploit 5949 RM D B-r00t
2003-02-24 Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Exploit 4971 R D FOX_MULDER

[ osX - local ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-06-08 Apple MACOS X xnu <= 1228.9.59 Local Kernel Root Exploit 9053 R D mu-b
2009-03-23 Mac OS X xnu <= 1228.x (hfs-fcntl) Local Kernel Root Exploit 7050 R D mu-b
2009-02-25 Apple MACOS X xnu <= 1228.x Local Kernel Memory Disclosure Exploit 8985 R D mu-b
2007-12-19 Apple Mac OS X mount_smbfs Stack Based Buffer Overflow Exploit 9397 R D Subreption LLC.
2007-05-30 Mac OS X < 2007-005 (vpnd) Local Privilege Escalation Exploit 9322 R D Kevin Finisterre
2007-05-25 Mac OS X <= 10.4.8 pppd Plugin Loading Privilege Escalation Exploit 6653 R D qaaz
2007-03-19 PHP 5.2.0 header() Space Trimming Buffer Underflow Exploit (MacOSX) 7798 R D Stefan Esser
2007-03-12 PHP 5.2.0 ext/filter Space Trimming Buffer Underflow Exploit (MacOSX) 6587 R D Stefan Esser
2007-02-28 McAfee VirusScan for Mac (Virex) <= 7.7 Local Root Exploit 5743 R D Kevin Finisterre
2007-01-29 Mac OS X 10.4.8 (8L2127) crashdump Privilege Escalation Exploit 7362 R D MoAB
2007-01-23 Mac OS X 10.4.8 (UserNotificationCenter) Privilege Escalation Exploit 6020 R D MoAB
2007-01-21 Mac OS X 10.4.8 System Preferences Local Privilege Escalation Exploit 5768 R D MoAB
2007-01-19 Rumpus 5.1 Local Privilege Escalation / Remote FTP LIST PoC Exploit 4968 R D MoAB
2007-01-08 Application Enhancer (APE) 2.0.2 Local Privilege Escalation Exploit 5598 R D MoAB
2007-01-05 Mac OS X 10.4.8 DiskManagement BOM Local Privilege Escalation Exploit 5518 R D MoAB
2007-01-05 Mac OS X 10.4.8 DiskManagement BOM (cron) Privilege Escalation Exploit 4943 R D MoAB
2007-01-02 VLC Media Player 0.8.6 (udp://) Format String Exploit (x86) 7081 R D MoAB
2006-11-15 Kerio WebSTAR 5.4.2 (libucache.dylib) Privilege Escalation Exploit (OSX) 6087 R D Kevin Finisterre
2006-11-08 Xcode OpenBase <= 10.0.0 (symlink) Local Root Exploit (OSX) 7266 R D Kevin Finisterre
2006-11-08 Xcode OpenBase <= 10.0.0 (unsafe system call) Local Root Exploit (OSX) 6182 R D Kevin Finisterre
2006-10-16 Xcode OpenBase <= 9.1.5 (root file create) Local Root Exploit (OSX) 5216 R D Kevin Finisterre
2006-10-15 Xcode OpenBase <= 9.1.5 Local Root Exploit (OSX) 5462 R D Kevin Finisterre
2006-09-30 Mac OS X <= 10.4.7 Mach Exception Handling Local Root Exploit 8011 R D xmath
2006-09-30 Mac OS X <= 10.4.7 Mach Exception Handling Local Exploit (10.3.x 0day) 7488 R D Kevin Finisterre
2006-08-02 Mac OS X <= 10.3.8 (CF_CHARSET_PATH) Local BOF Exploit (2) 7262 R D Kevin Finisterre
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (x86) 7007 R D Kevin Finisterre
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit (ppc) 6553 R D Kevin Finisterre
2006-08-01 Mac OS X <= 10.4.7 fetchmail Privilege Escalation Exploit 7647 R D Kevin Finisterre
2006-07-01 Mac OS X <= 10.4.6 (launchd) Local Format String Exploit (ppc) 6871 R D Kevin Finisterre
2006-06-28 Mac OS X <= 10.4.6 (launchd) Local Format String Exploit (x86) 7321 R D Kevin Finisterre
2006-03-01 Apple Mac OS X (/usr/bin/passwd) Custom Passwd Local Root Exploit 10644 R D vade79
2005-08-30 Adobe Version Cue 1.0/1.0.1 Local Root Exploit (OSX) 7121 R D vade79
2005-08-30 Adobe Version Cue 1.0/1.0.1 (-lib) Local Root Exploit (OSX) 6721 R D vade79
2005-06-14 Mac OS X 10.4 launchd Race Condition Exploit 6863 R D intropy
2005-03-22 Mac OS X <= 10.3.8 (CF_CHARSET_PATH) Local Root Buffer Overflow 6868 R D vade79
2005-02-07 Mac OS X DS_Store Arbitrary File Overwrite Exploit 6251 R D vade79
2005-02-07 Mac OS X Adobe Version Cue Local Root Exploit 6214 R D 0xdeadbabe
2005-01-22 Mac OS X <= 10.3.7 mRouter Local Privilege Escalation Exploit 5777 R D nemo
2004-12-08 Mac OS X Adobe Version Cue Local Root Exploit 7090 R D Jonathan Bringhurst
2004-07-28 Mac OS X Panther Internet Connect Local Root Exploit 6427 R D B-r00t
2003-04-18 Mac OS X <= 10.2.4 DirectoryService (PATH) Local Root Exploit 5777 R D Neeko Oni

[ osX - dos ]
-::DATE -::DESCRIPTION -::HITS -::AUTHOR
2009-03-23 Mac OS X xnu <= 1228.3.13 (zip-notify) Remote Kernel Overflow PoC 3643 R D mu-b
2009-03-23 Mac OS X xnu <= 1228.3.13 (macfsstat) Local Kernel Memory Leak/DoS 2169 R D mu-b
2009-03-23 Mac OS X xnu <= 1228.3.13 (profil) Kernel Memory Leak/DoS PoC 2295 R D mu-b
2009-03-23 Mac OS X xnu <=1228.x (vfssysctl) Local Kernel DoS PoC 2490 R D mu-b
2008-11-11 smcFanControl 2.1.2 Multiple Buffer Overflow Vulnerabilities PoC (OSX) 2542 R D xwings
2008-07-11 Core Image Fun House <= 2.0 Arbitrary Code Execution PoC (OSX) 3537 R D Adriel T. Desautels
2008-02-18 Apple iPhoto 4.0.3 DPAP Server Denial of Service Exploit 4325 R D David Wharton
2007-12-12 Apple Mac OS X xnu <= 1228.0 Local kernel Denial of Service PoC 5168 R D mu-b
2007-12-04 Apple Mac OS X xnu <= 1228.0 Local Kernel Denial of Service PoC 5011 R D mu-b
2007-12-04 Apple Mac OS X 10.5.0 (leopard) vpnd Remote Denial of Service PoC 8522 R D mu-b
2007-11-16 Apple Mac OS X 10.4.x Kernel i386_set_ldt() Integer Overflow PoC 6012 R D RISE Security
2007-02-02 Chicken of the VNC 2.0 (NULL-pointer) Remote Denial of Service Exploit 6418 R D poplix
2007-01-30 Apple iChat Bonjour 3.1.6.441 Multiple Denial of Service Exploit 4748 R D MoAB
2007-01-25 Apple CFNetwork HTTP Response Denial of Service Exploit (rb code) 5334 R D MoAB
2007-01-21 Apple iChat 3.1.6 v441 aim:// URL Handler Format String Exploit PoC 6891 R D X MoAB
2007-01-21 Mac OS X 10.4.x Kernel shared_region_map_file_np() Memory Corruption 4100 R D Adriano Lima
2007-01-20 Transmit.app <= 3.5.5 ftps:// URL Handler Heap Buffer Overflow PoC 6880 R D X MoAB
2007-01-18 Mac OS X 10.4.8 SLP Daemon Service Registration Buffer Overflow PoC 6468 R D MoAB
2007-01-17 Colloquy <= 2.1.3545 (INVITE) Format String Denial of Service Exploit 4852 R D MoAB
2007-01-14 Mac OS X 10.4.8 AppleTalk ATPsndrsp() Heap Buffer Overflow PoC 5518 R D MoAB
2007-01-09 Mac OS X 10.4.8 Apple Finder DMG Volume Name Memory Corruption PoC 4897 R D MoAB
2007-01-07 OmniWeb 5.5.1 Javascript alert() Remote Format String PoC 6313 R D X MoAB
2007-01-04 iLife iPhoto Photocast (XML title) Remote Format String PoC 4541 R D MoAB
2007-01-02 VLC Media Player 0.8.6 (udp://) Format String Exploit PoC (ppc) 5234 R D MoAB
2006-04-24 Apple Mac OS X Safari <= 2.0.3 (417.9.2) Multiple Vulnerabilities PoC 8514 R D X Tom Ferris
2006-04-24 Apple Mac OS X Safari <= 2.0.3 (417.9.2) (ROWSPAN) DoS PoC 8637 R D X Yannick von Arx
2005-02-08 Mac OS X AppleFileServer Remote Denial of Service Exploit 5789 R D nemo
2005-01-20 Mac OS X <= 10.3.7 Input Validation Flaw parse_machfile() DoS 5902 R D nemo



send all submissions to submit[at]milw0rm.com [gpg]
Copyright © 2004-2009 milw0rm