CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2513
https://notcve.org/view.php?id=CVE-2005-2513
19 Aug 2005 — Unknown vulnerability in HItoolbox for Mac OS X 10.4.2 allows VoiceOver services to read secure input fields. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-2502
https://notcve.org/view.php?id=CVE-2005-2502
19 Aug 2005 — Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2, as used in applications such as TextEdit, allows external user-assisted attackers to execute arbitrary code via a crafted Microsoft Word file. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2517
https://notcve.org/view.php?id=CVE-2005-2517
19 Aug 2005 — Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page that is browsed by the user, which causes form data to be sent to the wrong site. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2504
https://notcve.org/view.php?id=CVE-2005-2504
19 Aug 2005 — The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with "Requires Authentication: No" even when the user has selected the "Require pairing for security" option, which could confuse users about which setting is valid. • http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 1CVE-2005-2508 – Apple Mac OSX 10.4 - dsidentity Directory Services Account Creation and Deletion
https://notcve.org/view.php?id=CVE-2005-2508
19 Aug 2005 — dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts. • https://www.exploit-db.com/exploits/26185 •
CVSS: 9.8EPSS: 43%CPEs: 5EXPL: 0CVE-2005-1689
https://notcve.org/view.php?id=CVE-2005-1689
17 Jul 2005 — Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions. Vulnerabilidad de doble liberación de memoria en la función krb5_recvauth en MIT Kerberos 5 (krb5) 1.4.1 y anteriores permite que atacantes remotos ejecuten código arbitrario mediante ciertas condiciones de error. • ftp://patches.sgi.com/support/free/security/advisories/20050703-01-U.asc • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2005-1722
https://notcve.org/view.php?id=CVE-2005-1722
14 Jun 2005 — Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions. • http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2005-1933
https://notcve.org/view.php?id=CVE-2005-1933
09 Jun 2005 — Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute arbitrary commands by overriding the behavior of system widgets via a user widget with the same bundle identifier (CFBundleIdentifier), a different vulnerability than CVE-2005-1474. • http://www.kb.cert.org/vuls/id/983429 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1474
https://notcve.org/view.php?id=CVE-2005-1474
09 Jun 2005 — Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. • http://lists.apple.com/archives/security-announce/2005/May/msg00004.html •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2005-1473
https://notcve.org/view.php?id=CVE-2005-1473
09 Jun 2005 — SecurityAgent in Apple Mac OS X 10.4.1 allows attackers with physical access to bypass the locked screensaver and launch background applications by opening a URL from a text input field. • http://lists.apple.com/archives/security-announce/2005/May/msg00004.html •