Vulnerabilities > Apple > MAC OS X > 10.4.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-01 | CVE-2005-2749 | Local vulnerability in Apple Mac OS X Security Update 2005-10-31 Unspecified vulnerability in the Finder Get Info window for Mac OS X 10.4 up to 10.4.2 causes Finder to misrepresent file and group ownership information. | 2.1 |
| 2005-11-01 | CVE-2005-2739 | Local vulnerability in Apple Mac OS X Security Update 2005-10-31 Keychain Access in Mac OS X 10.4.2 and earlier keeps a password visible even if a keychain times out while the password is being viewed, which could allow attackers with physical access to obtain the password. | 2.1 |
| 2005-10-26 | CVE-2005-2746 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Mail.app in Mail for Apple Mac OS X 10.3.9 and 10.4.2 includes message contents when using auto-reply rules, which could cause Mail.app to include decrypted message contents for encrypted messages. | 5.0 |
| 2005-10-26 | CVE-2005-2742 | Unspecified vulnerability in Apple mac OS X and mac OS X Server SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting. | 4.6 |
| 2005-10-26 | CVE-2005-2741 | Permissions, Privileges, and Access Controls vulnerability in multiple products Authorization Services in securityd for Apple Mac OS X 10.3.9 allows local users to gain privileges by granting themselves certain rights that should be restricted to administrators. | 7.2 |
| 2005-10-25 | CVE-2005-2748 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application. | 2.1 |
| 2005-10-25 | CVE-2005-2747 | Multiple vulnerability in Apple Mac OS X Security Update 2005-008 Buffer overflow in ImageIO for Apple Mac OS X 10.4.2, as used by applications such as WebCore and Safari, allows remote attackers to execute arbitrary code via a crafted GIF file. | 7.5 |
| 2005-10-25 | CVE-2005-2744 | Multiple vulnerability in Apple Mac OS X Security Update 2005-008 Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file. | 5.1 |
| 2005-08-19 | CVE-2005-2526 | CUPS in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to cause a denial of service (CPU consumption) by sending a partial IPP request and closing the connection. | 5.0 |
| 2005-08-19 | CVE-2005-2525 | CUPS in Mac OS X 10.3.9 and 10.4.2 does not properly close file descriptors when handling multiple simultaneous print jobs, which allows remote attackers to cause a denial of service (printing halt). | 5.0 |