Vulnerabilities > Apple > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-12 | CVE-2006-1457 | Multiple vulnerability in Apple Mac OS X Security Update 2006-003 Safari on Apple Mac OS X 10.4.6, when "Open `safe' files after downloading" is enabled, will automatically expand archives, which could allow remote attackers to overwrite arbitrary files via an archive that contains a symlink. | 2.6 |
| 2006-04-21 | CVE-2006-1981 | Local Security vulnerability in Mac OS X Unspecified vulnerability in Java InputMethods on Mac OS X 10.4.5 may cause InputMethods to send input events for secure fields to the wrong text field, which might reveal the password to others who can view the screen. | 2.1 |
| 2006-03-03 | CVE-2006-0386 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled. | 1.7 |
| 2006-03-03 | CVE-2006-0388 | Code Injection vulnerability in Apple mac OS X and mac OS X Server Safari in Mac OS X 10.3 before 10.3.9 and 10.4 before 10.4.5 allows remote attackers to redirect users to local files and execute arbitrary JavaScript via unspecified vectors involving HTTP redirection to local resources. | 2.6 |
| 2006-03-03 | CVE-2006-0389 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attackers to execute arbitrary JavaScript via unspecified vectors involving RSS feeds. | 2.6 |
| 2006-03-03 | CVE-2006-0391 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that is handled by BOMArchiveHelper. | 1.7 |
| 2006-02-14 | CVE-2006-0382 | Local Denial Of Service vulnerability in Apple mac OS X 10.4.5 Apple Mac OS X 10.4.5 and allows local users to cause a denial of service (crash) via an undocumented system call. | 2.1 |
| 2005-12-31 | CVE-2005-0985 | Denial-Of-Service vulnerability in Apple Mac OS X Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service (temporary hang) via unspecified attack vectors related to the fan control unit (FCU) driver. | 2.1 |
| 2005-12-31 | CVE-2005-3782 | Denial-Of-Service vulnerability in Apple Mac OS X Server Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the "Show the Restart, Sleep, and Shut Down buttons" option is disabled, allows users with physical access to bypass login and reboot the system by entering ">restart", ">power", or ">shutdown" sequences after the username. | 2.1 |
| 2005-11-05 | CVE-2005-2755 | Denial of Service vulnerability in Apple QuickTime Null Pointer Dereference Apple QuickTime Player before 7.0.3 allows user-assisted attackers to cause a denial of service (crash) via a crafted file with a missing movie attribute, which leads to a null dereference. | 2.6 |