Vulnerabilities > Apple > Medium

DATE CVE VULNERABILITY TITLE RISK
2004-11-01 CVE-2004-1121 Unspecified vulnerability in Apple Safari
Apple Safari 1.0 through 1.2.3 allows remote attackers to spoof the URL displayed in the status bar via TABLE tags.
network
low complexity
apple
5.0
2004-08-18 CVE-2004-0517 Security vulnerability in Apple Mac OS X
Unknown vulnerability in Mac OS X 10.3.4, related to "handling of process IDs during package installation," a different vulnerability than CVE-2004-0516.
local
low complexity
apple
4.6
2004-08-18 CVE-2004-0516 Security vulnerability in Apple Mac OS X
Unknown vulnerability in Mac OS X 10.3.4, related to "package installation scripts," a different vulnerability than CVE-2004-0517.
local
low complexity
apple
4.6
2004-08-18 CVE-2004-0515 Security vulnerability in Apple Mac OS X
Unknown vulnerability in LoginWindow for Mac OS X 10.3.4, related to "handling of console log files."
local
low complexity
apple
4.6
2004-07-07 CVE-2004-0485 Unspecified vulnerability in Apple mac OS X 10.2.8/10.3.3
The default protocol helper for the disk: URI on Mac OS X 10.3.3 and 10.2.8 allows remote attackers to write arbitrary files by causing a disk image file (.dmg) to be mounted as a disk volume.
network
low complexity
apple
5.0
2004-07-07 CVE-2004-0431 Unspecified vulnerability in Apple Quicktime
Integer overflow in Apple QuickTime (QuickTime.qts) before 6.5.1 allows attackers to execute arbitrary code via a large "number of entries" field in the sample-to-chunk table data for a .mov movie file, which leads to a heap-based buffer overflow.
network
high complexity
apple
5.1
2004-07-07 CVE-2004-0430 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Stack-based buffer overflow in AppleFileServer for Mac OS X 10.3.3 and earlier allows remote attackers to execute arbitrary code via a LoginExt packet for a Cleartext Password User Authentication Method (UAM) request with a PathName argument that includes an AFPName type string that is longer than the associated length field.
network
high complexity
apple
5.1
2004-05-03 CVE-2004-0428 Large Input vulnerability in Apple Mac OS X CoreFoundation
Unknown vulnerability in CoreFoundation in Mac OS X 10.3.3 and Mac OS X 10.3.3 Server, related to "the handling of an environment variable," has unknown attack vectors and unknown impact.
network
low complexity
apple
5.0
2004-03-29 CVE-2003-1010 Local Privilege Escalation vulnerability in Apple MacOS X fs_usage
Unknown vulnerability in fs_usage in Mac OS X 10.2.8 and 10.3.2 and Mac OS X Server 10.2.8 and 10.3.2 allows local users to gain privileges via unknown attack vectors.
local
low complexity
apple
4.6
2004-03-29 CVE-2003-1008 Local Security vulnerability in Mac OS X Server
Unknown vulnerability in Mac OS X 10.2.8 and 10.3.2 allows local users to bypass the screen saver login window and write a text clipping to the desktop or another application.
local
low complexity
apple
4.6