CVSS: 4.6EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1089
https://notcve.org/view.php?id=CVE-2004-1089
Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html http://secunia.com/advisories/13362 http://www.ciac.org/ciac/bulletins/p-049.shtml http://www.securityfocus.com/bid/11802 https://exchange.xforce.ibmcloud.com/vulnerabilities/18351 •
CVSS: 2.1EPSS: 0%CPEs: 35EXPL: 0CVE-2004-1087
https://notcve.org/view.php?id=CVE-2004-1087
Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html http://secunia.com/advisories/13362 http://www.ciac.org/ciac/bulletins/p-049.shtml http://www.securityfocus.com/bid/11802 https://exchange.xforce.ibmcloud.com/vulnerabilities/18355 •
CVSS: 5.0EPSS: 3%CPEs: 1EXPL: 0CVE-2004-0169
https://notcve.org/view.php?id=CVE-2004-0169
QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function. QuickTime Streaming Server en MacOS X 10.2.8 y 10.3.2 permite a atacantes remotos causar una denegación de servicio (caída) mediante peticiones DESCRIBE con campos de User-Agent muy grandes, lo que causa que se dispare un "error de Aserción" en la función BufferIsFull • http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html http://www.idefense.com/application/poi/display?id=75&type=vulnerabilities http://www.kb.cert.org/vuls/id/460350 http://www.osvdb.org/6826 http://www.osvdb.org/6837 http://www.securityfocus.com/bid/9735 https://exchange.xforce.ibmcloud.com/vulnerabilities/15291 •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2003-0502
https://notcve.org/view.php?id=CVE-2003-0502
Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0421. Apple QuickTime / Darwin Streaming Server anteriores a 4.1.3g permite a atacantes remotos causar una denegación de servicio (caída) mediante un secuencia .. (punto punto) seguida por un nombre de dispositivo MS-DOS (por ejemplo AUX) en una petición puerto HTTP al puerto 1220; es una vulnerabilidad distinta a CAN-2003-O421. • http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html http://www.rapid7.com/advisories/R7-0015.html •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1CVE-2003-0423
https://notcve.org/view.php?id=CVE-2003-0423
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter. parse_xml.cgi en Appel QuickTime / Darqin Streaming Server anteriores a 4.1.3g permite a atacantes remotos obtener el código fuente de ficheros procesables mediante el parámetro de nombre de fichero. • http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html http://www.rapid7.com/advisories/R7-0015.html •