Vulnerabilities > Apple > MAC OS X Server > 10.2.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-03 | CVE-2005-1430 | Local Security vulnerability in Mac OS X Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users. | 3.6 |
| 2005-05-02 | CVE-2005-0342 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file. | 2.1 |
| 2005-05-02 | CVE-2005-0126 | Remote Buffer Overflow vulnerability in Apple ColorSync ICC Header ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap. | 7.5 |
| 2005-01-27 | CVE-2004-0927 | Multiple Security vulnerability in Apple Mac OS X ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. | 5.0 |
| 2005-01-27 | CVE-2004-0926 | Multiple Security vulnerability in Apple Mac OS X Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image. | 10.0 |
| 2005-01-27 | CVE-2004-0924 | Multiple Security vulnerability in Apple Mac OS X NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not. | 5.0 |
| 2005-01-27 | CVE-2004-0923 | Local Password Disclosure vulnerability in CUPS Error_Log CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. | 2.1 |
| 2005-01-27 | CVE-2004-0922 | Multiple Security vulnerability in Apple Mac OS X AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop Box. | 5.0 |
| 2005-01-27 | CVE-2004-0921 | Multiple Security vulnerability in Apple Mac OS X AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets. | 7.5 |
| 2005-01-27 | CVE-2004-0886 | Buffer Overflow vulnerability in LibTIFF Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls. | 5.0 |