Vulnerabilities > Apple
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-11-03 | CVE-2003-0882 | Remote Security vulnerability in Mac OS X Mac OS X before 10.3 initializes the TCP timestamp with a constant number, which allows remote attackers to determine the system's uptime via the ID field in a TCP packet. | 5.0 |
| 2003-11-03 | CVE-2003-0881 | Remote Security vulnerability in Mac OS X Mail in Mac OS X before 10.3, when configured to use MD5 Challenge Response, uses plaintext authentication if the CRAM-MD5 hashed login fails, which could allow remote attackers to gain privileges by sniffing the password. | 7.5 |
| 2003-11-03 | CVE-2003-0880 | Local Security vulnerability in Mac OS X Unknown vulnerability in Mac OS X before 10.3 allows local users to access Dock functions from behind Screen Effects when Full Keyboard Access is enabled using the Keyboard pane in System Preferences. | 4.6 |
| 2003-11-03 | CVE-2003-0878 | Local Security vulnerability in Mac OS X slpd daemon in Mac OS X before 10.3 allows local users to overwrite arbitrary files via a symlink attack on a temporary file, a different vulnerability than CVE-2003-0875. | 2.1 |
| 2003-11-03 | CVE-2003-0877 | Symbolic Link vulnerability in Apple Mac OS X Core File Mac OS X before 10.3 with core files enabled allows local users to overwrite arbitrary files and read core files via a symlink attack on core files that are created with predictable names in the /cores directory. | 4.6 |
| 2003-11-03 | CVE-2003-0876 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Finder in Mac OS X 10.2.8 and earlier sets global read/write/execute permissions on directories when they are dragged (copied) from a mounted volume such as a disk image (DMG), which could cause the directories to have less restrictive permissions than intended. | 2.1 |
| 2003-11-03 | CVE-2003-0871 | Apple Quicktime Java vulnerability in Apple Mac OS X 10.3 Unknown vulnerability in QuickTime Java in Mac OS X v10.3 and Mac OS X Server 10.3 allows attackers to gain "unauthorized access to a system." | 7.5 |
| 2003-10-06 | CVE-2003-0694 | The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. | 10.0 |
| 2003-10-06 | CVE-2003-0681 | Buffer Overflow vulnerability in Sendmail Ruleset Parsing A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences. | 7.5 |
| 2003-08-27 | CVE-2003-0502 | Denial-Of-Service vulnerability in Darwin Streaming Server Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. | 10.0 |