Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-08-27 | CVE-2003-0423 | Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3 parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter. | 5.0 |
| 2003-08-27 | CVE-2003-0422 | Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3 Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via a request to view_broadcast.cgi that does not contain the required parameters. | 5.0 |
| 2003-08-18 | CVE-2003-0518 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The screen saver in MacOS X allows users with physical access to cause the screen saver to crash and gain access to the underlying session via a large number of characters in the password field, possibly triggering a buffer overflow. | 4.6 |
| 2003-07-24 | CVE-2003-0379 | Unspecified vulnerability in Apple AFP Server Unknown vulnerability in Apple File Service (AFP Server) for Mac OS X Server, when sharing files on a UFS or re-shared NFS volume, allows remote attackers to overwrite arbitrary files. | 5.0 |
| 2003-06-13 | CVE-2003-0420 | Unspecified vulnerability in Apple mac OS X Server 10.2.6 Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool. | 4.6 |
| 2003-06-09 | CVE-2003-0355 | Remote Security vulnerability in Konqueror Embedded Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates. | 5.0 |
| 2003-05-05 | CVE-2003-0198 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Mac OS X before 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files. | 6.4 |
| 2003-03-07 | CVE-2003-0053 | Cross-Site Scripting vulnerability in Apple products Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message. network apple | 4.3 |
| 2003-03-07 | CVE-2003-0052 | Unspecified vulnerability in Apple products parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories. | 5.0 |
| 2003-03-07 | CVE-2003-0051 | Remote Path Disclosure vulnerability in Apple products parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NULL file parameter. | 5.0 |