CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0125
https://notcve.org/view.php?id=CVE-2005-0125
The "at" commands on Mac OS X 10.3.7 and earlier do not properly drop privileges, which allows local users to (1) delete arbitrary files via atrm, (2) execute arbitrary programs via the -f argument to batch, or (3) read arbitrary files via the -f argument to batch, which generates a job file that is readable by the local user. Apple's OS X batch family of commands make poor use of setuid capabilities allowing for privilege escalation. • http://lists.apple.com/archives/security-announce/2005/Jan/msg00001.html http://marc.info/?l=bugtraq&m=110685027017411&w=2 http://www.digitalmunition.com/DMA%5B2005-0127a%5D.txt http://www.kb.cert.org/vuls/id/678150 https://exchange.xforce.ibmcloud.com/vulnerabilities/18981 •
CVSS: 7.5EPSS: 4%CPEs: 68EXPL: 0CVE-2004-1307
https://notcve.org/view.php?id=CVE-2004-1307
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-101677-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201072-1 http://www.idefense.com/application/poi/display?id=173&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/539110 http://www.us-cert.gov/cas/techalerts/TA05-136A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11175 https: •
CVSS: 5.0EPSS: 0%CPEs: 35EXPL: 1CVE-2004-1123
https://notcve.org/view.php?id=CVE-2004-1123
Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. • http://www.idefense.com/application/poi/display?id=159&type=vulnerabilities https://exchange.xforce.ibmcloud.com/vulnerabilities/18357 •
CVSS: 7.5EPSS: 6%CPEs: 35EXPL: 0CVE-2004-1083
https://notcve.org/view.php?id=CVE-2004-1083
Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html http://secunia.com/advisories/13362 http://www.ciac.org/ciac/bulletins/p-049.shtml http://www.securityfocus.com/bid/11802 https://exchange.xforce.ibmcloud.com/vulnerabilities/18348 • CWE-178: Improper Handling of Case Sensitivity •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2004-1088
https://notcve.org/view.php?id=CVE-2004-1088
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html http://secunia.com/advisories/13362 http://www.ciac.org/ciac/bulletins/p-049.shtml http://www.securityfocus.com/bid/11802 https://exchange.xforce.ibmcloud.com/vulnerabilities/18353 •