Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2005-12-31	CVE-2005-4678	Remote Security vulnerability in Apple Safari 2.0.2 Apple Safari 2.0.2 (aka 416.12) allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site. network low complexity apple	5.0
2005-12-31	CVE-2005-3714	Resource Management Errors vulnerability in Apple Airport Express and Airport Extreme The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service (unresponsive interface) via malformed packets. network low complexity apple CWE-399	5.0
2005-12-31	CVE-2005-3712	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes. network low complexity apple CWE-119	6.5
2005-12-31	CVE-2005-3706	Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Heap-based buffer overflow in LibSystem in Mac OS X 10.4 through 10.4.5 allows context-dependent attackers to execute arbitrary code by causing an application that uses LibSystem to request a large amount of memory. network low complexity apple	6.4
2005-12-31	CVE-2005-2714	Link Following vulnerability in Apple mac OS X and mac OS X Server passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. local low complexity apple CWE-59	6.8
2005-12-31	CVE-2005-2713	Multiple vulnerability in Apple Mac OS X Security Update 2006-001 passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. local low complexity apple	6.8
2005-12-31	CVE-2005-2194	TCP/IP Remote Denial Of Service vulnerability in Apple Mac OSX Unspecified vulnerability in the Apple Mac OS X kernel before 10.4.2 allows remote attackers to cause a denial of service (kernel panic) via a crafted TCP packet, possibly related to source routing or loose source routing. network low complexity apple	5.0
2005-12-31	CVE-2005-1726	Multiple vulnerability in Apple mac OS X 10.4.1 The CoreGraphics Window Server in Mac OS X 10.4.1 allows local users with console access to gain privileges by "launching commands into root sessions." local low complexity apple	4.6
2005-12-01	CVE-2005-3704	Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 System log server in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to spoof syslog messages in log files by injecting various control characters such as newline (NL). network low complexity apple	5.0
2005-12-01	CVE-2005-3702	Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Safari in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows remote attackers to cause files to be downloaded to locations outside the download directory via a long file name. network low complexity apple	5.0