CVSS: 7.8EPSS: 0%CPEs: 54EXPL: 0CVE-2005-0972
https://notcve.org/view.php?id=CVE-2005-0972
12 May 2005 — Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters. • http://lists.apple.com/archives/security-announce/2005/Apr/msg00000.html •
CVSS: 8.8EPSS: 1%CPEs: 21EXPL: 1CVE-2005-1331
https://notcve.org/view.php?id=CVE-2005-1331
04 May 2005 — The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an applescript: URI, which can result in code that is different than the actual code that would be run, which could allow remote attackers to trick users into executing malicious code via certain URI characters such as NULL, control characters, and homographs. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 9.8EPSS: 0%CPEs: 21EXPL: 1CVE-2005-1341
https://notcve.org/view.php?id=CVE-2005-1341
04 May 2005 — Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 7.1EPSS: 0%CPEs: 56EXPL: 1CVE-2005-1430
https://notcve.org/view.php?id=CVE-2005-1430
03 May 2005 — Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users. • http://www.security-focus.com/archive/1/397306 •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 2CVE-2005-0975
https://notcve.org/view.php?id=CVE-2005-0975
22 Apr 2005 — Integer signedness error in the parse_machfile function in the mach-o loader (mach_loader.c) for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service (CPU consumption) via a crafted mach-o header. • http://felinemenace.org/advisories/macosx.txt •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 1CVE-2005-0713 – Apple Mac OSX 10.3.x - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2005-0713
21 Mar 2005 — The Bluetooth Setup Assistant for Mac OS X before 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges. • https://www.exploit-db.com/exploits/25256 •
CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2005-0715
https://notcve.org/view.php?id=CVE-2005-0715
21 Mar 2005 — AFP Server in Mac OS X before 10.3.8 uses insecure permissions for "Drop Boxes," which allows local users to read the contents of a Drop Box. • http://lists.apple.com/archives/security-announce/2005/Mar/msg00000.html •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 2CVE-2005-0716 – Apple Mac OSX 10.3.8 - 'CF_CHARSET_PATH' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-0716
21 Mar 2005 — Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable. • https://www.exploit-db.com/exploits/2111 •
CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 2CVE-2005-0342 – Apple Mac OSX - '.DS_Store' Arbitrary File Overwrite
https://notcve.org/view.php?id=CVE-2005-0342
10 Feb 2005 — The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file. • https://www.exploit-db.com/exploits/793 •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2005-0126
https://notcve.org/view.php?id=CVE-2005-0126
29 Jan 2005 — ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap. • http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html •