CVSS: 9.8EPSS: 1%CPEs: 32EXPL: 0CVE-2006-0384
https://notcve.org/view.php?id=CVE-2006-0384
02 Mar 2006 — automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names". • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 7.1EPSS: 0%CPEs: 32EXPL: 2CVE-2005-2713 – Apple Mac OSX - '/usr/bin/passwd' Custom Passwd Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2713
31 Dec 2005 — passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. • https://www.exploit-db.com/exploits/1545 •
CVSS: 6.8EPSS: 0%CPEs: 32EXPL: 1CVE-2005-2714
https://notcve.org/view.php?id=CVE-2005-2714
31 Dec 2005 — passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. • http://docs.info.apple.com/article.html?artnum=303382 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 18%CPEs: 75EXPL: 3CVE-2005-4504 – Apple Mac OSX - KHTMLParser Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-4504
22 Dec 2005 — The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag. • https://www.exploit-db.com/exploits/26971 •
CVSS: 9.8EPSS: 4%CPEs: 28EXPL: 0CVE-2005-2757
https://notcve.org/view.php?id=CVE-2005-2757
01 Dec 2005 — Heap-based buffer overflow in CoreFoundation in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to execute arbitrary code via unknown attack vectors involving "validation of URLs." • http://docs.info.apple.com/article.html?artnum=302847 •
CVSS: 9.8EPSS: 0%CPEs: 62EXPL: 0CVE-2005-2739
https://notcve.org/view.php?id=CVE-2005-2739
01 Nov 2005 — Keychain Access in Mac OS X 10.4.2 and earlier keeps a password visible even if a keychain times out while the password is being viewed, which could allow attackers with physical access to obtain the password. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2752
https://notcve.org/view.php?id=CVE-2005-2752
01 Nov 2005 — An unspecified kernel interface in Mac OS X 10.4.2 and earlier does not properly clear memory before reusing it, which could allow attackers to obtain sensitive information, a different vulnerability than CVE-2005-1126 and CVE-2005-1406. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 4%CPEs: 26EXPL: 0CVE-2005-2744
https://notcve.org/view.php?id=CVE-2005-2744
25 Oct 2005 — Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 9.1EPSS: 0%CPEs: 61EXPL: 0CVE-2005-2509
https://notcve.org/view.php?id=CVE-2005-2509
19 Aug 2005 — Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 9.8EPSS: 55%CPEs: 5EXPL: 0CVE-2005-1689
https://notcve.org/view.php?id=CVE-2005-1689
17 Jul 2005 — Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions. Vulnerabilidad de doble liberación de memoria en la función krb5_recvauth en MIT Kerberos 5 (krb5) 1.4.1 y anteriores permite que atacantes remotos ejecuten código arbitrario mediante ciertas condiciones de error. • ftp://patches.sgi.com/support/free/security/advisories/20050703-01-U.asc • CWE-415: Double Free •