Vulnerabilities > Apple > MAC OS X Server > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-10-25 | CVE-2005-2748 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application. | 2.1 |
| 2005-08-19 | CVE-2005-2509 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts. | 2.1 |
| 2005-06-08 | CVE-2005-1725 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory. | 2.1 |
| 2005-06-08 | CVE-2005-1727 | Unspecified vulnerability in Apple mac OS X Server 10.4/10.4.1 Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions." | 3.7 |
| 2005-05-03 | CVE-2005-1430 | Local Security vulnerability in Mac OS X Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users. | 3.6 |
| 2005-05-02 | CVE-2005-0342 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file. | 2.1 |
| 2005-05-02 | CVE-2005-0975 | Local Integer Overflow vulnerability in Darwin Kernel Mach File Parsing Integer signedness error in the parse_machfile function in the mach-o loader (mach_loader.c) for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service (CPU consumption) via a crafted mach-o header. | 2.1 |
| 2005-03-21 | CVE-2005-0715 | Unspecified vulnerability in Apple mac OS X and mac OS X Server AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box. | 2.1 |
| 2005-01-27 | CVE-2004-0923 | Local Password Disclosure vulnerability in CUPS Error_Log CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. | 2.1 |
| 2004-12-02 | CVE-2004-1081 | Remote And Local vulnerability in Apple Mac OS X The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. | 2.1 |