CVSS: 9.1EPSS: 0%CPEs: 61EXPL: 0CVE-2005-2509
https://notcve.org/view.php?id=CVE-2005-2509
19 Aug 2005 — Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 9.8EPSS: 55%CPEs: 5EXPL: 0CVE-2005-1689
https://notcve.org/view.php?id=CVE-2005-1689
17 Jul 2005 — Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions. Vulnerabilidad de doble liberación de memoria en la función krb5_recvauth en MIT Kerberos 5 (krb5) 1.4.1 y anteriores permite que atacantes remotos ejecuten código arbitrario mediante ciertas condiciones de error. • ftp://patches.sgi.com/support/free/security/advisories/20050703-01-U.asc • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 54EXPL: 0CVE-2005-0972
https://notcve.org/view.php?id=CVE-2005-0972
12 May 2005 — Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters. • http://lists.apple.com/archives/security-announce/2005/Apr/msg00000.html •
CVSS: 7.1EPSS: 0%CPEs: 56EXPL: 1CVE-2005-1430
https://notcve.org/view.php?id=CVE-2005-1430
03 May 2005 — Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users. • http://www.security-focus.com/archive/1/397306 •
CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 2CVE-2005-0342 – Apple Mac OSX - '.DS_Store' Arbitrary File Overwrite
https://notcve.org/view.php?id=CVE-2005-0342
10 Feb 2005 — The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file. • https://www.exploit-db.com/exploits/793 •
CVSS: 10.0EPSS: 0%CPEs: 26EXPL: 0CVE-2004-0090
https://notcve.org/view.php?id=CVE-2004-0090
31 Dec 2004 — Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and attack vectors. • http://lists.apple.com/archives/security-announce/2004/Jan/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 1CVE-2004-1123
https://notcve.org/view.php?id=CVE-2004-1123
05 Dec 2004 — Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. • http://www.idefense.com/application/poi/display?id=159&type=vulnerabilities •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2004-1083
https://notcve.org/view.php?id=CVE-2004-1083
03 Dec 2004 — Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html • CWE-178: Improper Handling of Case Sensitivity •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1081
https://notcve.org/view.php?id=CVE-2004-1081
02 Dec 2004 — The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1084
https://notcve.org/view.php?id=CVE-2004-1084
02 Dec 2004 — Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •