Vulnerabilities > Apple > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-31 | CVE-2005-4678 | Remote Security vulnerability in Apple Safari 2.0.2 Apple Safari 2.0.2 (aka 416.12) allows remote attackers to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site. | 5.0 |
2005-12-31 | CVE-2005-3714 | Resource Management Errors vulnerability in Apple Airport Express and Airport Extreme The network interface for Apple AirPort Express 6.x before Firmware Update 6.3, and AirPort Extreme 5.x before Firmware Update 5.7, allows remote attackers to cause a denial of service (unresponsive interface) via malformed packets. | 5.0 |
2005-12-31 | CVE-2005-3712 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authenticated users to execute arbitrary code via long extended attributes. | 6.5 |
2005-12-31 | CVE-2005-3706 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 Heap-based buffer overflow in LibSystem in Mac OS X 10.4 through 10.4.5 allows context-dependent attackers to execute arbitrary code by causing an application that uses LibSystem to request a large amount of memory. | 6.4 |
2005-12-31 | CVE-2005-2714 | Link Following vulnerability in Apple mac OS X and mac OS X Server passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. | 6.8 |
2005-12-31 | CVE-2005-2713 | Multiple vulnerability in Apple Mac OS X Security Update 2006-001 passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. | 6.8 |
2005-12-31 | CVE-2005-2194 | TCP/IP Remote Denial Of Service vulnerability in Apple Mac OSX Unspecified vulnerability in the Apple Mac OS X kernel before 10.4.2 allows remote attackers to cause a denial of service (kernel panic) via a crafted TCP packet, possibly related to source routing or loose source routing. | 5.0 |
2005-12-31 | CVE-2005-1726 | Multiple vulnerability in Apple mac OS X 10.4.1 The CoreGraphics Window Server in Mac OS X 10.4.1 allows local users with console access to gain privileges by "launching commands into root sessions." | 4.6 |
2005-12-01 | CVE-2005-3704 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 System log server in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to spoof syslog messages in log files by injecting various control characters such as newline (NL). | 5.0 |
2005-12-01 | CVE-2005-3702 | Multiple vulnerability in RETIRED: Apple Mac OS X Security Update 2005-009 Safari in Mac OS X and OS X Server 10.3.9 and 10.4.3 allows remote attackers to cause files to be downloaded to locations outside the download directory via a long file name. | 5.0 |