Vulnerabilities > Apple > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-12 | CVE-2006-1440 | Multiple vulnerability in Apple Mac OS X Security Update 2006-003 BOM in Apple Mac OS X 10.3.9 and 10.4.6 allows attackers to overwrite arbitrary files via an archive that contains symbolic links. | 2.1 |
| 2006-05-12 | CVE-2006-1444 | Multiple vulnerability in Apple mac OS X 10.4.6 CoreGraphics in Apple Mac OS X 10.4.6, when "Enable access for assistive devices" is on, allows an application to bypass restrictions for secure event input and read certain events from other applications in the same window session by using Quartz Event Services. | 2.1 |
| 2006-05-12 | CVE-2006-1457 | Multiple vulnerability in Apple Mac OS X Security Update 2006-003 Safari on Apple Mac OS X 10.4.6, when "Open `safe' files after downloading" is enabled, will automatically expand archives, which could allow remote attackers to overwrite arbitrary files via an archive that contains a symlink. | 2.6 |
| 2006-04-21 | CVE-2006-1981 | Local Security vulnerability in Mac OS X Unspecified vulnerability in Java InputMethods on Mac OS X 10.4.5 may cause InputMethods to send input events for secure fields to the wrong text field, which might reveal the password to others who can view the screen. | 2.1 |
| 2006-03-03 | CVE-2006-0386 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled. | 1.7 |
| 2006-03-03 | CVE-2006-0388 | Code Injection vulnerability in Apple mac OS X and mac OS X Server Safari in Mac OS X 10.3 before 10.3.9 and 10.4 before 10.4.5 allows remote attackers to redirect users to local files and execute arbitrary JavaScript via unspecified vectors involving HTTP redirection to local resources. | 2.6 |
| 2006-03-03 | CVE-2006-0389 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Cross-site scripting (XSS) vulnerability in Syndication (Safari RSS) in Mac OS X 10.4 through 10.4.5 allows remote attackers to execute arbitrary JavaScript via unspecified vectors involving RSS feeds. | 2.6 |
| 2006-03-03 | CVE-2006-0391 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that is handled by BOMArchiveHelper. | 1.7 |
| 2006-02-14 | CVE-2006-0382 | Local Denial Of Service vulnerability in Apple mac OS X 10.4.5 Apple Mac OS X 10.4.5 and allows local users to cause a denial of service (crash) via an undocumented system call. | 2.1 |
| 2005-12-31 | CVE-2005-0985 | Denial-Of-Service vulnerability in Apple Mac OS X Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service (temporary hang) via unspecified attack vectors related to the fan control unit (FCU) driver. | 2.1 |