CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-2749
https://notcve.org/view.php?id=CVE-2005-2749
01 Nov 2005 — Unspecified vulnerability in the Finder Get Info window for Mac OS X 10.4 up to 10.4.2 causes Finder to misrepresent file and group ownership information. NOTE: it is not clear whether this issue satisfies the CVE definition of a vulnerability. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2752
https://notcve.org/view.php?id=CVE-2005-2752
01 Nov 2005 — An unspecified kernel interface in Mac OS X 10.4.2 and earlier does not properly clear memory before reusing it, which could allow attackers to obtain sensitive information, a different vulnerability than CVE-2005-1126 and CVE-2005-1406. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2005-2751
https://notcve.org/view.php?id=CVE-2005-2751
01 Nov 2005 — memberd in Mac OS X 10.4 up to 10.4.2, in certain situations, does not quickly synchronize access control checks with changes in group membership, which could allow users to access files and other resources after they have been removed from a group. • http://lists.apple.com/archives/security-announce/2005/Oct/msg00000.html •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2742
https://notcve.org/view.php?id=CVE-2005-2742
25 Oct 2005 — SecurityAgent in Apple Mac OS X 10.4.2, under certain circumstances, can cause the "Switch User..." button to appear even though the "Enable fast user switching" setting is disabled, which can allow attackers with physical access to gain access to the desktop and bypass the "Require password to wake this computer from sleep or screen saver" setting. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2005-2743
https://notcve.org/view.php?id=CVE-2005-2743
25 Oct 2005 — The Java extensions for QuickTime 6.52 and earlier in Apple Mac OS X 10.3.9 allow untrusted applets to call arbitrary functions in system libraries, which allows remote attackers to execute arbitrary code. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2005-2746
https://notcve.org/view.php?id=CVE-2005-2746
25 Oct 2005 — Mail.app in Mail for Apple Mac OS X 10.3.9 and 10.4.2 includes message contents when using auto-reply rules, which could cause Mail.app to include decrypted message contents for encrypted messages. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2524
https://notcve.org/view.php?id=CVE-2005-2524
25 Oct 2005 — Safari after 2.0 in Apple Mac OS X 10.3.9 allows remote attackers to bypass domain restrictions via crafted web archives that cause Safari to render them as if they came from a different site. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2005-2741
https://notcve.org/view.php?id=CVE-2005-2741
25 Oct 2005 — Authorization Services in securityd for Apple Mac OS X 10.3.9 allows local users to gain privileges by granting themselves certain rights that should be restricted to administrators. Authorization Services en securityd para Apple Mac OS X 10.3.9 permite a usuarios locales obtener privilegios garantizándose a sí mismos determinados derechos que deben de ser restringidos a administradores. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2005-2748
https://notcve.org/view.php?id=CVE-2005-2748
25 Oct 2005 — The malloc function in the libSystem library in Apple Mac OS X 10.3.9 and 10.4.2 allows local users to overwrite arbitrary files by setting the MallocLogFile environment variable to the target file before running a setuid application. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •
CVSS: 8.8EPSS: 6%CPEs: 2EXPL: 0CVE-2005-2747
https://notcve.org/view.php?id=CVE-2005-2747
25 Oct 2005 — Buffer overflow in ImageIO for Apple Mac OS X 10.4.2, as used by applications such as WebCore and Safari, allows remote attackers to execute arbitrary code via a crafted GIF file. • http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html •