CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1474
https://notcve.org/view.php?id=CVE-2005-1474
09 Jun 2005 — Dashboard in Apple Mac OS X 10.4.1 allows remote attackers to install widgets via Safari without prompting the user, a different vulnerability than CVE-2005-1933. • http://lists.apple.com/archives/security-announce/2005/May/msg00004.html •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2005-1725 – Apple Mac OSX 10.4 - launchd Race Condition
https://notcve.org/view.php?id=CVE-2005-1725
08 Jun 2005 — launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory. • https://www.exploit-db.com/exploits/1043 •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1727
https://notcve.org/view.php?id=CVE-2005-1727
08 Jun 2005 — Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions." • http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1724
https://notcve.org/view.php?id=CVE-2005-1724
08 Jun 2005 — NFS on Apple Mac OS X 10.4.x up to 10.4.1 does not properly obey the -network or -mask flags for a filesystem and exports it to everyone, which allows remote attackers to bypass intended access restrictions. • http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1723
https://notcve.org/view.php?id=CVE-2005-1723
08 Jun 2005 — LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow attackers to bypass intended restrictions. • http://lists.apple.com/archives/security-announce/2005/Jun/msg00000.html •
CVSS: 7.8EPSS: 0%CPEs: 54EXPL: 0CVE-2005-0972
https://notcve.org/view.php?id=CVE-2005-0972
12 May 2005 — Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters. • http://lists.apple.com/archives/security-announce/2005/Apr/msg00000.html •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1335
https://notcve.org/view.php?id=CVE-2005-1335
04 May 2005 — Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) chfn, (2) chpass, and (3) chsh, which "use external helper programs in an insecure manner." • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 9.8EPSS: 1%CPEs: 21EXPL: 1CVE-2005-1341
https://notcve.org/view.php?id=CVE-2005-1341
04 May 2005 — Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1337
https://notcve.org/view.php?id=CVE-2005-1337
04 May 2005 — Apple Help Viewer 2.0.7 and 3.0.0 in Mac OS X 10.3.9 allows remote attackers to read and execute arbitrary scrpts with less restrictive privileges via a help:// URI. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-1332
https://notcve.org/view.php?id=CVE-2005-1332
04 May 2005 — Bluetooth-enabled systems in Mac OS X 10.3.9 enables the Bluetooth file exchange service by default, which allows remote attackers to access files without the user being notified, and local users to access files via the default directory. • http://docs.info.apple.com/article.html?artnum=301381 •