Vulnerabilities > Apple > MAC OS X Server > 10.4.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-10-26 | CVE-2005-2746 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Mail.app in Mail for Apple Mac OS X 10.3.9 and 10.4.2 includes message contents when using auto-reply rules, which could cause Mail.app to include decrypted message contents for encrypted messages. | 5.0 |
| 2005-10-26 | CVE-2005-2742 | Unspecified vulnerability in Apple mac OS X and mac OS X Server SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting. | 4.6 |
| 2005-10-26 | CVE-2005-2741 | Permissions, Privileges, and Access Controls vulnerability in multiple products Authorization Services in securityd for Apple Mac OS X 10.3.9 allows local users to gain privileges by granting themselves certain rights that should be restricted to administrators. | 7.2 |
| 2005-10-25 | CVE-2005-2748 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application. | 2.1 |
| 2005-10-25 | CVE-2005-2747 | Multiple vulnerability in Apple Mac OS X Security Update 2005-008 Buffer overflow in ImageIO for Apple Mac OS X 10.4.2, as used by applications such as WebCore and Safari, allows remote attackers to execute arbitrary code via a crafted GIF file. | 7.5 |
| 2005-10-25 | CVE-2005-2744 | Multiple vulnerability in Apple Mac OS X Security Update 2005-008 Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file. | 5.1 |
| 2005-08-19 | CVE-2005-2511 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using Kerberos authentication with LDAP, allows attackers to gain access to a root Terminal window. | 10.0 |
| 2005-08-19 | CVE-2005-2510 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1/10.4.2 The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to 10.4.2, when using multiple subnets and Address Groups, does not always properly write firewall rules to the Active Rules when certain conditions occur, which could result in firewall policies that are less restrictive than intended by the administrator. | 4.6 |
| 2005-08-19 | CVE-2005-2508 | Unspecified vulnerability in Apple mac OS X and mac OS X Server dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts. | 4.6 |
| 2005-08-19 | CVE-2005-2507 | Unspecified vulnerability in Apple mac OS X Server 10.3.9/10.4.2 Buffer overflow in Directory Services in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to execute arbitrary code during authentication. | 7.5 |