CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2520
https://notcve.org/view.php?id=CVE-2005-2520
19 Aug 2005 — The password assistant in Mac OS X 10.4 to 10.4.2, when used to create multiple accounts from the same process, does not reset the suggested password list when the assistant is displayed, which allows attackers to view recently used passwords. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 9.8EPSS: 5%CPEs: 2EXPL: 0CVE-2005-2518
https://notcve.org/view.php?id=CVE-2005-2518
19 Aug 2005 — Buffer overflow in servermgrd in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to execute arbitrary code during authentication. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2005-2522
https://notcve.org/view.php?id=CVE-2005-2522
19 Aug 2005 — Safari in WebKit in Mac OS X 10.4 to 10.4.2 directly accesses URLs within PDF files without the normal security checks, which allows remote attackers to execute arbitrary code via links in a PDF file. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2526
https://notcve.org/view.php?id=CVE-2005-2526
19 Aug 2005 — CUPS in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to cause a denial of service (CPU consumption) by sending a partial IPP request and closing the connection. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-2501
https://notcve.org/view.php?id=CVE-2005-2501
19 Aug 2005 — Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format (RTF) file. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2525
https://notcve.org/view.php?id=CVE-2005-2525
19 Aug 2005 — CUPS in Mac OS X 10.3.9 and 10.4.2 does not properly close file descriptors when handling multiple simultaneous print jobs, which allows remote attackers to cause a denial of service (printing halt). • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 9.1EPSS: 0%CPEs: 61EXPL: 0CVE-2005-2509
https://notcve.org/view.php?id=CVE-2005-2509
19 Aug 2005 — Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2519
https://notcve.org/view.php?id=CVE-2005-2519
19 Aug 2005 — slpd in Directory Services in Mac OS X 10.3.9 creates insecure temporary files as root, which allows local users to gain privileges. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 2.1EPSS: 0%CPEs: 4EXPL: 0CVE-2005-2512
https://notcve.org/view.php?id=CVE-2005-2512
19 Aug 2005 — Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote images even when the user's preferences state otherwise, which could result in a privacy leak. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 6.1EPSS: 0%CPEs: 4EXPL: 1CVE-2005-2523 – Apple Mac OSX 10.4 Weblog Server - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-2523
19 Aug 2005 — Multiple cross-site scripting (XSS) vulnerabilities in Weblog Server in Mac OS X 10.4 to 10.4.2 allow remote attackers to inject arbitrary web script or HTML via unknown vectors. • https://www.exploit-db.com/exploits/26152 •