Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-27 | CVE-2004-0927 | Multiple Security vulnerability in Apple Mac OS X ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. | 5.0 |
| 2005-01-27 | CVE-2004-0925 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Postfix on Mac OS X 10.3.x through 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate. | 5.0 |
| 2005-01-27 | CVE-2004-0924 | Multiple Security vulnerability in Apple Mac OS X NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not. | 5.0 |
| 2005-01-27 | CVE-2004-0922 | Multiple Security vulnerability in Apple Mac OS X AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop Box. | 5.0 |
| 2005-01-27 | CVE-2004-0886 | Buffer Overflow vulnerability in LibTIFF Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls. | 5.0 |
| 2005-01-10 | CVE-2004-1199 | Denial Of Service vulnerability in Apple Safari Web Browser Infinite Array Sort Safari 1.2.4 on Mac OS X 10.3.6 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays. | 5.0 |
| 2005-01-10 | CVE-2004-1123 | Unspecified vulnerability in Apple products Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. | 5.0 |
| 2004-12-31 | CVE-2004-1832 | Remote Buffer Overflow vulnerability in Apple mac OS X Server 10.3 Buffer overflow in the GUI admin service in Mac OS X Server 10.3 allows remote attackers to cause a denial of service (crash and restart) via a large amount of data to TCP port 660. | 5.0 |
| 2004-12-31 | CVE-2004-0825 | Denial of Service vulnerability in Apple mac OS X Server 10.2.8/10.3.4/10.3.5 QuickTime Streaming Server in Mac OS X Server 10.2.8, 10.3.4, and 10.3.5 allows remote attackers to cause a denial of service (application deadlock) via a certain sequence of operations. | 5.0 |
| 2004-12-02 | CVE-2004-1089 | Remote And Local vulnerability in Apple Mac OS X Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. | 4.6 |