CVSS: 4.6EPSS: 0%CPEs: 14EXPL: 0CVE-2003-0518
https://notcve.org/view.php?id=CVE-2003-0518
The screen saver in MacOS X allows users with physical access to cause the screen saver to crash and gain access to the underlying session via a large number of characters in the password field, possibly triggering a buffer overflow. El salvapantallas de MacOS X permite a usuarios con acceso físico a la máquina hacer que el salvapantallas se caiga y ganar acceso a la sesión subyacente mediante un número de caracteres largo en el campo de contraseña, posiblemente disparando un desbordamiento de búfer. • http://archives.neohapsis.com/archives/bugtraq/2003-07/0034.html http://archives.neohapsis.com/archives/bugtraq/2003-07/0187.html http://docs.info.apple.com/article.html?artnum=120232 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0420
https://notcve.org/view.php?id=CVE-2003-0420
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool. • http://secunia.com/advisories/9025 http://www.auscert.org.au/render.html?it=3165 http://www.kb.cert.org/vuls/id/JPLA-5NTL8E http://www.securityfocus.com/bid/7894 https://exchange.xforce.ibmcloud.com/vulnerabilities/12342 •
CVSS: 6.4EPSS: 0%CPEs: 21EXPL: 0CVE-2003-0198
https://notcve.org/view.php?id=CVE-2003-0198
Mac OS X before 10.2.5 allows guest users to modify the permissions of the DropBox folder and read unauthorized files. Mac OS X anteriores a 10.2.5 permite a usuarios invitados modificar los permisos de la carpeta DropBox y leer ficheros no autorizados. • http://lists.apple.com/mhonarc/security-announce/msg00028.html •
CVSS: 7.2EPSS: 0%CPEs: 22EXPL: 1CVE-2003-0171 – Apple Mac OSX 10.2.4 - DirectoryService 'PATH' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2003-0171
DirectoryServices in MacOS X trusts the PATH environment variable to locate and execute the touch command, which allows local users to execute arbitrary commands by modifying the PATH to point to a directory containing a malicious touch program. DirectoryServices en MacOS X se fia de la variable de entorno PATH para localizar y ejecutar el comando touch, lo que permite a usurarios locales ejecutar comandos arbitrarios modificando PATH para que apunte a un directorio que contenga un programa 'touch' malicioso. • https://www.exploit-db.com/exploits/15 http://lists.apple.com/mhonarc/security-announce/msg00028.html http://www.atstake.com/research/advisories/2003/a041003-1.txt •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2003-0049
https://notcve.org/view.php?id=CVE-2003-0049
Apple File Protocol (AFP) in Mac OS X before 10.2.4 allows administrators to log in as other users by using the administrator password. AFP en Mac OS X anterior a 10.2.4 permite a administradores iniciar sesión como otros usuarios usando la contraseña de administrador. • http://docs.info.apple.com/article.html?artnum=61798 http://lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102.txt http://securitytracker.com/id?1006107 http://www.iss.net/security_center/static/11333.php http://www.securityfocus.com/bid/6860 •