Vulnerabilities > Apple > Medium

DATE CVE VULNERABILITY TITLE RISK
2003-07-24 CVE-2003-0379 Unspecified vulnerability in Apple AFP Server
Unknown vulnerability in Apple File Service (AFP Server) for Mac OS X Server, when sharing files on a UFS or re-shared NFS volume, allows remote attackers to overwrite arbitrary files.
network
low complexity
apple
5.0
2003-06-13 CVE-2003-0420 Unspecified vulnerability in Apple mac OS X Server 10.2.6
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.
local
low complexity
apple
4.6
2003-06-09 CVE-2003-0355 Remote Security vulnerability in Konqueror Embedded
Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates.
network
low complexity
apple kde
5.0
2003-05-05 CVE-2003-0198 Unspecified vulnerability in Apple mac OS X and mac OS X Server
Mac OS X before 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files.
network
low complexity
apple
6.4
2003-03-07 CVE-2003-0053 Cross-Site Scripting vulnerability in Apple products
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message.
network
apple
4.3
2003-03-07 CVE-2003-0052 Unspecified vulnerability in Apple products
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories.
network
low complexity
apple
5.0
2003-03-07 CVE-2003-0051 Remote Path Disclosure vulnerability in Apple products
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NULL file parameter.
network
low complexity
apple
5.0
2002-12-31 CVE-2002-2326 Cryptographic Issues vulnerability in Apple mac OS X
The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic.
network
low complexity
apple CWE-310
5.0
2002-12-26 CVE-2002-1366 Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows local users with lp privileges to create or overwrite arbitrary files via file race conditions, as demonstrated by ice-cream.
local
high complexity
easy-software-products apple
6.2
2002-12-11 CVE-2002-1269 Local Security vulnerability in Apple mac OS X 10.2.2
Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem.
local
low complexity
apple
4.6