CVSS: 8.2EPSS: 1%CPEs: 32EXPL: 0CVE-2006-0388
https://notcve.org/view.php?id=CVE-2006-0388
03 Mar 2006 — Safari in Mac OS X 10.3 before 10.3.9 and 10.4 before 10.4.5 allows remote attackers to redirect users to local files and execute arbitrary JavaScript via unspecified vectors involving HTTP redirection to local resources. • http://docs.info.apple.com/article.html?artnum=303382 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 7.5EPSS: 2%CPEs: 32EXPL: 0CVE-2006-0383
https://notcve.org/view.php?id=CVE-2006-0383
02 Mar 2006 — IPSec when used with VPN networks in Mac OS X 10.4 through 10.4.5 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving the "incorrect handling of error conditions". IPSec, cuando se usa con redes VPN en Max OS X 10.4 a 10.4.5 permite a atacantes remotos causar una denegación de servicio (caída de aplicación) mediante vectores no especificados implicando "manejo incorrecto de condiciones de error". • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 9.8EPSS: 2%CPEs: 32EXPL: 0CVE-2006-0384
https://notcve.org/view.php?id=CVE-2006-0384
02 Mar 2006 — automount in Mac OS X 10.4.5 and earlier allows remote file servers to cause a denial of service (unresponsiveness) or execute arbitrary code via unspecified vectors that cause automount to "mount file systems with reserved names". • http://docs.info.apple.com/article.html?artnum=303382 •
CVSS: 8.8EPSS: 96%CPEs: 2EXPL: 4CVE-2006-0848 – Apple Safari - Archive Metadata Command Execution
https://notcve.org/view.php?id=CVE-2006-0848
22 Feb 2006 — The "Open 'safe' files after downloading" option in Safari on Apple Mac OS X allows remote user-assisted attackers to execute arbitrary commands by tricking a user into downloading a __MACOSX folder that contains metadata (resource fork) that invokes the Terminal, which automatically interprets the script using bash, as demonstrated using a ZIP file that contains a script with a safe file extension. • https://www.exploit-db.com/exploits/16866 • CWE-16: Configuration •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0382
https://notcve.org/view.php?id=CVE-2006-0382
14 Feb 2006 — Apple Mac OS X 10.4.5 and allows local users to cause a denial of service (crash) via an undocumented system call. • http://lists.apple.com/archives/security-announce/2006/Feb/msg00000.html •
CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 0CVE-2005-2194
https://notcve.org/view.php?id=CVE-2005-2194
31 Dec 2005 — Unspecified vulnerability in the Apple Mac OS X kernel before 10.4.2 allows remote attackers to cause a denial of service (kernel panic) via a crafted TCP packet, possibly related to source routing or loose source routing. • http://docs.info.apple.com/article.html?artnum=301948 •
CVSS: 9.1EPSS: 0%CPEs: 8EXPL: 1CVE-2005-3782
https://notcve.org/view.php?id=CVE-2005-3782
31 Dec 2005 — Mac OS X 10.4.3 up to 10.4.6, when loginwindow uses the "Name and password" setting, and the "Show the Restart, Sleep, and Shut Down buttons" option is disabled, allows users with physical access to bypass login and reboot the system by entering ">restart", ">power", or ">shutdown" sequences after the username. • http://www.osvdb.org/20776 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-0985
https://notcve.org/view.php?id=CVE-2005-0985
31 Dec 2005 — Unspecified vulnerability in the Mac OS X kernel before 10.3.8 allows local users to cause a denial of service (temporary hang) via unspecified attack vectors related to the fan control unit (FCU) driver. • http://docs.info.apple.com/article.html?artnum=301324 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1726
https://notcve.org/view.php?id=CVE-2005-1726
31 Dec 2005 — The CoreGraphics Window Server in Mac OS X 10.4.1 allows local users with console access to gain privileges by "launching commands into root sessions." • http://docs.info.apple.com/article.html?artnum=301742 •
CVSS: 7.1EPSS: 0%CPEs: 32EXPL: 2CVE-2005-2713 – Apple Mac OSX - '/usr/bin/passwd' Custom Passwd Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2713
31 Dec 2005 — passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 allows local users to create arbitrary world-writable files as root by specifying an alternate file in the password database option. • https://www.exploit-db.com/exploits/1545 •