CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2004-0518
https://notcve.org/view.php?id=CVE-2004-0518
Unknown vulnerability in AppleFileServer for Mac OS X 10.3.4, related to "the use of SSH and reporting errors," has unknown impact and attack vectors. Vulnerabilidad desconocida en el AppleFileServer para Mac OS X 10.3.4, relacionado con "el uso de SSH e informes de errores". • http://lists.seifried.org/pipermail/security/2004-May/003743.html http://securitytracker.com/id?1010333 https://exchange.xforce.ibmcloud.com/vulnerabilities/16288 •
CVSS: 7.6EPSS: 3%CPEs: 8EXPL: 2CVE-2004-0486 – Apple Mac OSX 10.3.x - Help Protocol Remote Code Execution
https://notcve.org/view.php?id=CVE-2004-0486
HelpViewer in Mac OS X 10.3.3 and 10.2.8 processes scripts that it did not initiate, which can allow attackers to execute arbitrary code, an issue that was originally reported as a directory traversal vulnerability in the Safari web browser using the runscript parameter in a help: URI handler. HelpViewer en Mac OS X 10.3.3 y 10.2.8 procesa scripts que no inició, lo que puede permitir a atacantes ejecuatar código de su elección, un problema que fue reportado originalmente como una vulnerabilidad de atravesamiento de directorios en el navegador web Safari usanto el manejador de URI help: • https://www.exploit-db.com/exploits/24121 http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0837.html http://lists.apple.com/mhonarc/security-announce/msg00053.html http://secunia.com/advisories/11622 http://securitytracker.com/id?1010167 http://www.fundisom.com/owned/warning http://www.kb.cert.org/vuls/id/578798 http://www.osvdb.org/6184 http://www.securityfocus.com/bid/10356 https://exchange.xforce.ibmcloud.com/vulnerabilities/16166 •
CVSS: 5.1EPSS: 10%CPEs: 2EXPL: 3CVE-2004-0430 – AppleFileServer (OSX) - LoginExt PathName Overflow
https://notcve.org/view.php?id=CVE-2004-0430
Stack-based buffer overflow in AppleFileServer for Mac OS X 10.3.3 and earlier allows remote attackers to execute arbitrary code via a LoginExt packet for a Cleartext Password User Authentication Method (UAM) request with a PathName argument that includes an AFPName type string that is longer than the associated length field. Desbordamiento de búfer basado en la pila en AppleFileServer de MAC OS X 10.3.3 y anteriores permite a atacantes remotos ejecutar código arbitrario mediante un paquete LoginExt para un método de autenticación de usuario (User Authentication Method - UAM) con contraseña en texto plano con un arguemento PathName que incluye un cadena de tipo de AFPName más larga que el campo de longitud asociado. • https://www.exploit-db.com/exploits/16863 https://www.exploit-db.com/exploits/9931 https://www.exploit-db.com/exploits/391 http://lists.apple.com/mhonarc/security-announce/msg00049.html http://secunia.com/advisories/11539 http://securitytracker.com/id?1010039 http://www.atstake.com/research/advisories/2004/a050304-1.txt http://www.kb.cert.org/vuls/id/648406 http://www.securiteam.com/securitynews/5QP0115CUO.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16049 •
CVSS: 5.0EPSS: 0%CPEs: 26EXPL: 0CVE-2004-0428
https://notcve.org/view.php?id=CVE-2004-0428
Unknown vulnerability in CoreFoundation in Mac OS X 10.3.3 and Mac OS X 10.3.3 Server, related to "the handling of an environment variable," has unknown attack vectors and unknown impact. • http://lists.virus.org/macsec-0405/msg00000.html http://secunia.com/advisories/11539 http://securitytracker.com/id?1010045 http://www.auscert.org.au/render.html?it=4070 http://www.securityfocus.com/bid/10270 https://exchange.xforce.ibmcloud.com/vulnerabilities/16051 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2004-0167
https://notcve.org/view.php?id=CVE-2004-0167
DiskArbitration in Mac OS X 10.2.8 and 10.3.2 does not properly initialize writeable removable media. DiskArbitration en Mac OS X 10.2.8 y 10.3.2 no inicializa adecuadamente medios extraibles escribibles. • http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html http://secunia.com/advisories/10959 http://www.kb.cert.org/vuls/id/578886 http://www.osvdb.org/6824 http://www.securityfocus.com/bid/9731 https://exchange.xforce.ibmcloud.com/vulnerabilities/15300 •