Vulnerabilities > Apple > MAC OS X Server > 10.4.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-08-19 | CVE-2005-2510 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1/10.4.2 The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to 10.4.2, when using multiple subnets and Address Groups, does not always properly write firewall rules to the Active Rules when certain conditions occur, which could result in firewall policies that are less restrictive than intended by the administrator. | 4.6 |
2005-08-19 | CVE-2005-2509 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts. | 2.1 |
2005-07-18 | CVE-2005-1689 | Double Free vulnerability in multiple products Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions. | 9.8 |
2005-06-16 | CVE-2005-1722 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions. | 7.2 |
2005-06-08 | CVE-2005-1727 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions." | 3.7 |
2005-06-08 | CVE-2005-1725 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory. | 2.1 |
2005-06-08 | CVE-2005-1724 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 NFS on Apple Mac OS X 10.4.x up to 10.4.1 does not properly obey the -network or -mask flags for a filesystem and exports it to everyone, which allows remote attackers to bypass intended access restrictions. | 7.5 |
2005-06-08 | CVE-2005-1723 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions. | 7.5 |
2005-04-14 | CVE-2005-1043 | exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion. | 5.0 |