Mac OS X
by Apple Inc.
CVEs (2,090)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2005-0970 | 0.00 | — | 0.01 | May 2, 2005 | Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts. | |||
| CVE-2005-1043 | 0.00 | — | 0.02 | Apr 14, 2005 | exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion. | |||
| CVE-2005-0715 | 0.00 | — | 0.00 | Mar 21, 2005 | AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box. | |||
| CVE-2004-0924 | 0.00 | — | 0.01 | Jan 27, 2005 | NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not. | |||
| CVE-2004-0921 | 0.00 | — | 0.01 | Jan 27, 2005 | AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets. | |||
| CVE-2004-0922 | 0.00 | — | 0.01 | Jan 27, 2005 | AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop… | |||
| CVE-2004-0925 | 0.00 | — | 0.01 | Jan 27, 2005 | Postfix on Mac OS X 10.3.x through 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate. | |||
| CVE-2004-0926 | 0.00 | — | 0.05 | Jan 27, 2005 | Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image. | |||
| CVE-2004-0886 | 0.00 | — | 0.05 | Jan 27, 2005 | Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls. | |||
| CVE-2004-0927 | 0.00 | — | 0.01 | Jan 27, 2005 | ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions. | |||
| CVE-2004-0923 | 0.00 | — | 0.00 | Jan 27, 2005 | CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords. | |||
| CVE-2004-1123 | 0.00 | — | 0.01 | Jan 10, 2005 | Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. | |||
| CVE-2004-0821 | 0.00 | — | 0.00 | Dec 31, 2004 | The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow local users to gain privileges. | |||
| CVE-2004-0090 | 0.00 | — | 0.02 | Dec 31, 2004 | Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors. | |||
| CVE-2004-0429 | 0.00 | — | 0.02 | Dec 31, 2004 | Unknown vulnerability related to "the handling of large requests" in RAdmin for Apple Mac OS X 10.3.3 and Mac OS X 10.2.8 may allow attackers to have unknown impact via unknown attack vectors. | |||
| CVE-2004-0622 | 0.00 | — | 0.00 | Dec 6, 2004 | Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory. | |||
| CVE-2004-1089 | 0.00 | — | 0.00 | Dec 2, 2004 | Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. | |||
| CVE-2004-1087 | 0.00 | — | 0.00 | Dec 2, 2004 | Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. | |||
| CVE-2004-1088 | 0.00 | — | 0.02 | Dec 2, 2004 | Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. | |||
| CVE-2004-1081 | 0.00 | — | 0.00 | Dec 2, 2004 | The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. |
- CVE-2005-0970May 2, 2005risk 0.00cvss —epss 0.01
Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts.
- CVE-2005-1043Apr 14, 2005risk 0.00cvss —epss 0.02
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
- CVE-2005-0715Mar 21, 2005risk 0.00cvss —epss 0.00
AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box.
- CVE-2004-0924Jan 27, 2005risk 0.00cvss —epss 0.01
NetInfo Manager on Mac OS X 10.3.x through 10.3.5, after an initial root login, reports the root account as being disabled, even when it has not.
- CVE-2004-0921Jan 27, 2005risk 0.00cvss —epss 0.01
AFP Server on Mac OS X 10.3.x to 10.3.5, when a guest has mounted an AFP volume, allows the guest to "terminate authenticated user mounts" via modified SessionDestroy packets.
- CVE-2004-0922Jan 27, 2005risk 0.00cvss —epss 0.01
AFP Server on Mac OS X 10.3.x to 10.3.5, under certain conditions, does not properly set the guest group ID, which causes AFP to change a write-only AFP Drop Box to be read-write when the Drop Box is on a share that is mounted by a guest, which allows attackers to read the Drop…
- CVE-2004-0925Jan 27, 2005risk 0.00cvss —epss 0.01
Postfix on Mac OS X 10.3.x through 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate.
- CVE-2004-0926Jan 27, 2005risk 0.00cvss —epss 0.05
Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image.
- CVE-2004-0886Jan 27, 2005risk 0.00cvss —epss 0.05
Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
- CVE-2004-0927Jan 27, 2005risk 0.00cvss —epss 0.01
ServerAdmin in Mac OS X 10.2.8 through 10.3.5 uses the same example self-signed certificate on each system, which allows remote attackers to decrypt sessions.
- CVE-2004-0923Jan 27, 2005risk 0.00cvss —epss 0.00
CUPS 1.1.20 and earlier records authentication information for a device URI in the error_log file, which allows local users to obtain user names and passwords.
- CVE-2004-1123Jan 10, 2005risk 0.00cvss —epss 0.01
Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte.
- CVE-2004-0821Dec 31, 2004risk 0.00cvss —epss 0.00
The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow local users to gain privileges.
- CVE-2004-0090Dec 31, 2004risk 0.00cvss —epss 0.02
Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors.
- CVE-2004-0429Dec 31, 2004risk 0.00cvss —epss 0.02
Unknown vulnerability related to "the handling of large requests" in RAdmin for Apple Mac OS X 10.3.3 and Mac OS X 10.2.8 may allow attackers to have unknown impact via unknown attack vectors.
- CVE-2004-0622Dec 6, 2004risk 0.00cvss —epss 0.00
Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory.
- CVE-2004-1089Dec 2, 2004risk 0.00cvss —epss 0.00
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users.
- CVE-2004-1087Dec 2, 2004risk 0.00cvss —epss 0.00
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user.
- CVE-2004-1088Dec 2, 2004risk 0.00cvss —epss 0.02
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information.
- CVE-2004-1081Dec 2, 2004risk 0.00cvss —epss 0.00
The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session.
Page 101 of 105