Vulnerabilities > Apple > MAC OS X Server > 10.3.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-14 | CVE-2005-4217 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X Server 10.3.9 Perl in Apple Mac OS X Server 10.3.9 does not properly drop privileges when using the "$<" variable to set uid, which allows attackers to gain privileges. | 7.5 |
| 2005-12-01 | CVE-2005-3705 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Heap-based buffer overflow in WebKit in Mac OS X and OS X Server 10.3.9 and 10.4.3, as used in applications such as Safari, allows remote attackers to execute arbitrary code via unknown attack vectors. | 7.5 |
| 2005-12-01 | CVE-2005-3702 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Safari in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows remote attackers to cause files to be downloaded to locations outside the download directory via a long file name. | 5.0 |
| 2005-12-01 | CVE-2005-3701 | Multiple vulnerability in Apple mac OS X Server 10.3.9/10.4.3 Unspecified vulnerability in passwordserver in Mac OS X Server 10.3.9 and 10.4.3, when creating an Open Directory master server, allows local users to gain privileges via unknown attack vectors. | 7.2 |
| 2005-12-01 | CVE-2005-3700 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Unknown vulnerability in iodbcadmintool in the ODBC Administrator utility in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows local users to execute arbitrary code via unknown attack vectors. | 4.6 |
| 2005-12-01 | CVE-2005-2757 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Heap-based buffer overflow in CoreFoundation in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to execute arbitrary code via unknown attack vectors involving "validation of URLs." | 7.5 |
| 2005-11-01 | CVE-2005-2752 | Information Exposure vulnerability in Apple mac OS X and mac OS X Server An unspecified kernel interface in Mac OS X 10.4.2 and earlier does not properly clear memory before reusing it, which could allow attackers to obtain sensitive information, a different vulnerability than CVE-2005-1126 and CVE-2005-1406. | 2.1 |
| 2005-11-01 | CVE-2005-2739 | Local vulnerability in Apple Mac OS X Security Update 2005-10-31 Keychain Access in Mac OS X 10.4.2 and earlier keeps a password visible even if a keychain times out while the password is being viewed, which could allow attackers with physical access to obtain the password. | 2.1 |
| 2005-10-26 | CVE-2005-2746 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Mail.app in Mail for Apple Mac OS X 10.3.9 and 10.4.2 includes message contents when using auto-reply rules, which could cause Mail.app to include decrypted message contents for encrypted messages. | 5.0 |
| 2005-10-26 | CVE-2005-2745 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Mail.app in Mail for Apple Mac OS X 10.3.9, when using Kerberos 5 for SMTP authentication, can include uninitialized memory in a message, which might allow remote attackers to obtain sensitive information. | 5.0 |