Vulnerabilities > Apple > Medium

DATE CVE VULNERABILITY TITLE RISK
2003-06-09 CVE-2003-0355 Remote Security vulnerability in Konqueror Embedded
Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates.
network
low complexity
apple kde
5.0
5.0
2003-05-05 CVE-2003-0198 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Mac OS X before 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files.
network
low complexity
apple
6.4
6.4
2003-03-07 CVE-2003-0053 Cross-Site Scripting vulnerability in Apple products
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message.
network
apple
4.3
4.3
2003-03-07 CVE-2003-0052 Unspecified vulnerability in Apple products
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories.
network
low complexity
apple
5.0
5.0
2003-03-07 CVE-2003-0051 Remote Path Disclosure vulnerability in Apple products
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NULL file parameter.
network
low complexity
apple
5.0
5.0
2002-12-31 CVE-2002-2326 Cryptographic Issues vulnerability in Apple mac OS X
The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic.
network
low complexity
apple CWE-310
5.0
5.0
2002-12-26 CVE-2002-1366 Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.
local
high complexity
easy-software-products apple
6.2
6.2
2002-12-11 CVE-2002-1269 Local Security vulnerability in Apple mac OS X 10.2.2
Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem.
local
low complexity
apple
4.6
4.6
2002-12-11 CVE-2002-1268 Local Security vulnerability in Apple mac OS X 10.2.2
Mac OS X 10.2.2 allows local users to gain privileges via a mounted ISO 9600 CD, aka "User Privilege Elevation via Mounting an ISO 9600 CD."
local
low complexity
apple
4.6
4.6
2002-12-11 CVE-2002-1267 Denial-Of-Service vulnerability in Apple mac OS X 10.2.2
Mac OS X 10.2.2 allows remote attackers to cause a denial of service by accessing the CUPS Printing Web Administration utility, aka "CUPS Printing Web Administration is Remotely Accessible."
network
low complexity
apple
5.0
5.0