| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4408 | 5.0 |
The Security Framework in Apple Mac OS X 10.4 through 10.4.8 allows remote attackers to cause a denial of service (resource consumption) via certain public key values in an X.509 certificate that requires extra resources during signature verification
|
08-03-2011 - 02:40 | 30-11-2006 - 16:28 | |
| CVE-2006-4410 | 7.5 |
The Security Framework in Apple Mac OS X 10.3.9, and 10.4.x before 10.4.7, does not properly search certificate revocation lists (CRL), which allows remote attackers to access systems by using revoked certificates.
|
08-03-2011 - 02:40 | 30-11-2006 - 16:28 | |
| CVE-2006-4409 | 5.0 |
The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple Mac OS X 10.4 through 10.4.8 retrieve certificate revocation lists (CRL) when an HTTP proxy is in use, which could cause the system to accept certificates that h
|
08-03-2011 - 02:40 | 30-11-2006 - 16:28 | |
| CVE-2006-4407 | 5.0 |
The Security Framework in Apple Mac OS X 10.3.x up to 10.3.9 does not properly prioritize encryption ciphers when negotiating the strongest shared cipher, which causes Secure Transport to user a weaker cipher that makes it easier for remote attackers
|
08-03-2011 - 02:40 | 30-11-2006 - 16:28 |