Vulnerabilities > Apple > MAC OS X Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-08-19 | CVE-2005-2501 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format (RTF) file. | 7.6 |
| 2005-06-16 | CVE-2005-1722 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions. | 7.2 |
| 2005-06-13 | CVE-2005-1474 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. | 7.5 |
| 2005-06-08 | CVE-2005-1724 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 NFS on Apple Mac OS X 10.4.x up to 10.4.1 does not properly obey the -network or -mask flags for a filesystem and exports it to everyone, which allows remote attackers to bypass intended access restrictions. | 7.5 |
| 2005-06-08 | CVE-2005-1723 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions. | 7.5 |
| 2005-05-12 | CVE-2005-0972 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters. | 7.2 |
| 2005-05-04 | CVE-2005-1339 | Remote Security vulnerability in Mac OS X Server lukemftpd in Mac OS X 10.3.9 allows remote authenticated users to escape the chroot environment by logging in with their full name. | 7.5 |
| 2005-05-04 | CVE-2005-1337 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Apple Help Viewer 2.0.7 and 3.0.0 in Mac OS X 10.3.9 allows remote attackers to read and execute arbitrary scrpts with less restrictive privileges via a help:// URI. | 7.5 |
| 2005-05-04 | CVE-2005-1335 | Local Security vulnerability in Mac OS X Server Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) chfn, (2) chpass, and (3) chsh, which "use external helper programs in an insecure manner." | 7.2 |
| 2005-05-04 | CVE-2005-1332 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Bluetooth-enabled systems in Mac OS X 10.3.9 enables the Bluetooth file exchange service by default, which allows remote attackers to access files without the user being notified, and local users to access files via the default directory. | 7.5 |