CVSS: 5.0EPSS: 1%CPEs: 4EXPL: 0CVE-2003-1005
https://notcve.org/view.php?id=CVE-2003-1005
The PKI functionality in Mac OS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (service crash) via malformed ASN.1 sequences. • http://lists.apple.com/archives/security-announce/2003/Dec/msg00001.html http://secunia.com/advisories/10474 http://www.auscert.org.au/render.html?it=3704 http://www.securityfocus.com/bid/9266 •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2003-0975
https://notcve.org/view.php?id=CVE-2003-0975
Apple Safari 1.0 through 1.1 on Mac OS X 10.3.1 and Mac OS X 10.2.8 allows remote attackers to steal user cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain. Apple Safari 1.0 a 1.1 en Mac OS X 10.3.1 y Mac OS X 10.2.8 permite a atacantes remotos robar 'cookies' de usuarios de otro dominio mediante un enlace con un carácter nulo codificado-hex (%00) seguido del dominio objetivo. • http://docs.info.apple.com/article.html?artnum=61798 http://lists.apple.com/mhonarc/security-announce/msg00042.html http://marc.info/?l=bugtraq&m=106917674428552&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/7973 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0913
https://notcve.org/view.php?id=CVE-2003-0913
Unknown vulnerability in the Terminal application for Mac OS X 10.3 (Client and Server) may allow "unauthorized access." Vulnerabilidad desconocida en la aplicación de Terminal de Mac OS X 10.3 (cliente y servidor) puede permitir "acceso no autorizado". • http://docs.info.apple.com/article.html?artnum=120269 http://docs.info.apple.com/article.html?artnum=61798 http://lists.apple.com/mhonarc/security-announce/msg00040.html http://www.securityfocus.com/bid/8979 https://exchange.xforce.ibmcloud.com/vulnerabilities/13620 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0882
https://notcve.org/view.php?id=CVE-2003-0882
Mac OS X before 10.3 initializes the TCP timestamp with a constant number, which allows remote attackers to determine the system's uptime via the ID field in a TCP packet. Mac OS X anteriores a 10.3 inicializa la marca de tiempo TCP con un número constante, lo que permite a atacantes remotos determinar el tiempo que lleva levantado el sistema mediante el campo ID de un paquete TCP. • http://docs.info.apple.com/article.html?artnum=61798 http://lists.apple.com/mhonarc/security-announce/msg00038.html •
CVSS: 4.6EPSS: 0%CPEs: 9EXPL: 0CVE-2003-0895
https://notcve.org/view.php?id=CVE-2003-0895
Buffer overflow in the Mac OS X kernel 10.2.8 and earlier allows local users, and possibly remote attackers, to cause a denial of service (crash), access portions of memory, and possibly execute arbitrary code via a long command line argument (argv[]). Desbordamiento de búfer en el kernel de Mac OS X 10.2.8 y anteriores permite a usuarios locales, y posiblemente atacantes remotos, causar una denegación de servicio (caída), acceder a porciones de memoria, y posiblemente ejecutar código arbitrario mediante un argumento de línea de comandos largo (argv[]). • http://lists.apple.com/mhonarc/security-announce/msg00038.html http://www.atstake.com/research/advisories/2003/a102803-3.txt http://www.securityfocus.com/bid/8913 https://exchange.xforce.ibmcloud.com/vulnerabilities/13541 •