Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2003-11-03 CVE-2003-0871 Apple Quicktime Java vulnerability in Apple Mac OS X 10.3
Unknown vulnerability in QuickTime Java in Mac OS X v10.3 and Mac OS X Server 10.3 allows attackers to gain "unauthorized access to a system."
network
low complexity
apple
7.5
2003-10-06 CVE-2003-0694 The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
network
low complexity
sendmail sgi apple compaq freebsd gentoo hp ibm netbsd sun turbolinux
critical
10.0
2003-10-06 CVE-2003-0681 Buffer Overflow vulnerability in Sendmail Ruleset Parsing
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
network
low complexity
sendmail apple gentoo hp ibm netbsd openbsd turbolinux
7.5
2003-08-27 CVE-2003-0502 Denial-Of-Service vulnerability in Darwin Streaming Server
Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a ..
network
low complexity
apple
critical
10.0
2003-08-27 CVE-2003-0466 Off-by-one Error vulnerability in multiple products
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.
network
low complexity
wuftpd redhat apple sun freebsd netbsd openbsd CWE-193
critical
9.8
2003-08-27 CVE-2003-0426 Remote Security vulnerability in Apple Darwin Streaming Server 4.1.3
The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator.
network
low complexity
apple
critical
10.0
2003-08-27 CVE-2003-0425 Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3
Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ...
network
low complexity
apple
5.0
2003-08-27 CVE-2003-0424 Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or .
network
low complexity
apple
5.0
2003-08-27 CVE-2003-0423 Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.
network
low complexity
apple
5.0
2003-08-27 CVE-2003-0422 Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via a request to view_broadcast.cgi that does not contain the required parameters.
network
low complexity
apple
5.0