Apple

macOS X Server

655 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.1

CVE-2005-2751

  • EPSS 0.09%
  • Published 01.11.2005 12:47:00
  • Last modified 03.04.2025 01:03:51

memberd in Mac OS X 10.4 up to 10.4.2, in certain situations, does not quickly synchronize access control checks with changes in group membership, which could allow users to access files and other resources after they have been removed from a group.

2.1

CVE-2005-2752

  • EPSS 0.09%
  • Published 01.11.2005 12:47:00
  • Last modified 03.04.2025 01:03:51

An unspecified kernel interface in Mac OS X 10.4.2 and earlier does not properly clear memory before reusing it, which could allow attackers to obtain sensitive information, a different vulnerability than CVE-2005-1126 and CVE-2005-1406.

5

CVE-2005-2524

  • EPSS 0.4%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

Safari after 2.0 in Apple Mac OS X 10.3.9 allows remote attackers to bypass domain restrictions via crafted web archives that cause Safari to render them as if they came from a different site.

7.2

CVE-2005-2741

  • EPSS 0.05%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

Authorization Services in securityd for Apple Mac OS X 10.3.9 allows local users to gain privileges by granting themselves certain rights that should be restricted to administrators.

4.6

CVE-2005-2742

  • EPSS 0.08%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to th...

7.5

CVE-2005-2743

  • EPSS 1.73%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

The Java extensions for QuickTime 6.52 and earlier in Apple Mac OS X 10.3.9 allow untrusted applets to call arbitrary functions in system libraries, which allows remote attackers to execute arbitrary code.

5

CVE-2005-2745

  • EPSS 0.75%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

Mail.app in Mail for Apple Mac OS X 10.3.9, when using Kerberos 5 for SMTP authentication, can include uninitialized memory in a message, which might allow remote attackers to obtain sensitive information.

5

CVE-2005-2746

  • EPSS 0.32%
  • Published 26.10.2005 00:02:00
  • Last modified 03.04.2025 01:03:51

Mail.app in Mail for Apple Mac OS X 10.3.9 and 10.4.2 includes message contents when using auto-reply rules, which could cause Mail.app to include decrypted message contents for encrypted messages.

5.1

CVE-2005-2744

  • EPSS 4.81%
  • Published 25.10.2005 22:06:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file.

7.5

CVE-2005-2747

  • EPSS 4.65%
  • Published 25.10.2005 22:06:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in ImageIO for Apple Mac OS X 10.4.2, as used by applications such as WebCore and Safari, allows remote attackers to execute arbitrary code via a crafted GIF file.