Vulnerabilities > Apple > MAC OS X Server > 10.2.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-03 | CVE-2004-1083 | Improper Handling of Case Sensitivity vulnerability in Apple products Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization. | 7.5 |
2004-12-02 | CVE-2004-1089 | Remote And Local vulnerability in Apple Mac OS X Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. | 4.6 |
2004-12-02 | CVE-2004-1088 | Remote And Local vulnerability in Apple Mac OS X Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. | 7.5 |
2004-12-02 | CVE-2004-1087 | Remote And Local vulnerability in Apple Mac OS X Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. | 2.1 |
2004-12-02 | CVE-2004-1086 | Remote And Local vulnerability in Apple Mac OS X Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. | 7.5 |
2004-12-02 | CVE-2004-1085 | Remote And Local vulnerability in Apple Mac OS X Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. | 2.1 |
2004-12-02 | CVE-2004-1084 | Remote And Local vulnerability in Apple Mac OS X Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles. | 5.0 |
2004-12-02 | CVE-2004-1081 | Remote And Local vulnerability in Apple Mac OS X The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. | 2.1 |
2004-11-23 | CVE-2004-0744 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The TCP/IP Networking component in Mac OS X before 10.3.5 allows remote attackers to cause a denial of service (memory and resource consumption) via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet. | 5.0 |
2004-11-23 | CVE-2004-0743 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method URL if that URL is redirected after the POST data and the user uses the forward or backward buttons, which may cause an information leak. | 5.0 |