CVSS: 5.5EPSS: 0%CPEs: 32EXPL: 0CVE-2006-0386
https://notcve.org/view.php?id=CVE-2006-0386
03 Mar 2006 — FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when creating a FileVault image, which allows local users to access protected files when FileVault is enabled. • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 7.5EPSS: 0%CPEs: 12EXPL: 0CVE-2006-0391
https://notcve.org/view.php?id=CVE-2006-0391
03 Mar 2006 — Directory traversal vulnerability in the BOM framework in Mac OS X 10.x before 10.3.9 and 10.4 before 10.4.5 allows user-assisted attackers to overwrite or create arbitrary files via an archive that is handled by BOMArchiveHelper. • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 7.5EPSS: 2%CPEs: 32EXPL: 0CVE-2006-0383
https://notcve.org/view.php?id=CVE-2006-0383
02 Mar 2006 — IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of error conditions". IPSec, cuando se usa con redes VPN en Max OS X 10.4 a 10.4.5 permite a atacantes remotos causar una denegación de servicio (caída de aplicación) mediante vectores no especificados implicando "manejo incorrecto de condiciones de error". • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 9.8EPSS: 2%CPEs: 32EXPL: 0CVE-2006-0384
https://notcve.org/view.php?id=CVE-2006-0384
02 Mar 2006 — automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names". • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 6.8EPSS: 0%CPEs: 32EXPL: 1CVE-2005-2714
https://notcve.org/view.php?id=CVE-2005-2714
31 Dec 2005 — passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to overwrite arbitrary files via a symlink attack on the .pwtmp.[PID] temporary file. • http://docs.info.apple.com/article.html?artnum=303382 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 0CVE-2005-2194
https://notcve.org/view.php?id=CVE-2005-2194
31 Dec 2005 — Unspecified vulnerability in the Apple Mac OS X kernel before 10.4.2 allows remote attackers to cause a denial of service (kernel panic) via a crafted TCP packet, possibly related to source routing or loose source routing. • http://docs.info.apple.com/article.html?artnum=301948 •
CVSS: 7.1EPSS: 0%CPEs: 32EXPL: 2CVE-2005-2713 – Apple Mac OSX - '/usr/bin/passwd' Custom Passwd Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2713
31 Dec 2005 — passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. • https://www.exploit-db.com/exploits/1545 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0985
https://notcve.org/view.php?id=CVE-2005-0985
31 Dec 2005 — Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service (temporary hang) via unspecified attack vectors related to the fan control unit (FCU) driver. • http://docs.info.apple.com/article.html?artnum=301324 •
CVSS: 7.8EPSS: 37%CPEs: 75EXPL: 3CVE-2005-4504 – Apple Mac OSX - KHTMLParser Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-4504
22 Dec 2005 — The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.3 and earlier, as used by Safari and TextEdit, allows remote attackers to cause a denial of service (memory consumption and application crash) via HTML files with a large ROWSPAN attribute in a TD tag. • https://www.exploit-db.com/exploits/26971 •
CVSS: 9.8EPSS: 4%CPEs: 28EXPL: 0CVE-2005-2757
https://notcve.org/view.php?id=CVE-2005-2757
01 Dec 2005 — Heap-based buffer overflow in CoreFoundation in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to execute arbitrary code via unknown attack vectors involving "validation of URLs." • http://docs.info.apple.com/article.html?artnum=302847 •