Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2005-2519 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.2 HIGH· v2 slpd in Directory Services in Mac OS X 10.3.9 creates insecure temporary files as root, which allows local users to gain privileges.
CVE-2005-2518 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in servermgrd in Mac OS X 10.3.9 and 10.4.2 allows remote attackers to execute arbitrary code during authentication.
CVE-2005-2517 1Apple 2Mac Os X Safari Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 2.6 LOW· v2 Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page that is browsed by the user, which causes form data to be sent to the wrong site.
CVE-2005-2516 1Apple 2Mac Os X Safari Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 Safari in Mac OS X 10.3.9 and 10.4.2, when rendering Rich Text Format (RTF) files, can directly access URLs without performing the normal security checks, which allows remote attackers to execute arbitrary commands.
CVE-2005-2515 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Quartz Composer Screen Saver in Mac OS X 10.4.2 allows local users to access links from the RSS Visualizer even when a password is required.
CVE-2005-2514 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in ping in Mac OS X 10.3.9 allows local users to execute arbitrary code.
CVE-2005-2513 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in HItoolbox for Mac OS X 10.4.2 allows VoiceOver services to read secure input fields.
CVE-2005-2512 1Apple 2Mac Os X Mail Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 2.1 LOW· v2 Mail.app in Mac OS 10.4.2 and earlier, when printing or forwarding an HTML message, loads remote images even when the user's preferences state otherwise, which could result in a privacy leak.
CVE-2005-2511 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 10.0 HIGH· v2 Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using Kerberos authentication with LDAP, allows attackers to gain access to a root Terminal window.
CVE-2005-2509 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 2.1 LOW· v2 Unknown vulnerability in loginwindow in Mac OS X 10.4.2 and earlier, when Fast User Switching is enabled, allows attackers to log into other accounts if they know the passwords to at least two accounts.
CVE-2005-2508 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 4.6 MEDIUM· v2 dsidentity in Directory Services in Mac OS X 10.4.2 allows local users to add or remove user accounts.
CVE-2005-2506 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Algorithmic complexity vulnerability in CoreFoundation in Mac OS X 10.3.9 and 10.4.2 allows attackers to cause a denial of service (CPU consumption) via crafted Gregorian dates.
CVE-2005-2505 1Apple 1Mac Os X Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in CoreFoundation in Mac OS X 10.3.9 allows attackers to execute arbitrary code via command line arguments to an application that uses CoreFoundation.
CVE-2005-2504 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.2 HIGH· v2 The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with "Requires Authentication: No" even when the user has selected the "Require pairing for security" option, which could confuse users about which setting...Show more The System Profiler in Mac OS X 10.4.2 labels a Bluetooth device with "Requires Authentication: No" even when the user has selected the "Require pairing for security" option, which could confuse users about which setting is valid.Show less
CVE-2005-2503 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 4.6 MEDIUM· v2 AppKit for Mac OS X 10.3.9 and 10.4.2 allows attackers with physical access to create local accounts by forcing a particular error to occur at the login window.
CVE-2005-2502 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 5.1 MEDIUM· v2 Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2, as used in applications such as TextEdit, allows external user-assisted attackers to execute arbitrary code via a crafted Microsoft Word file.
CVE-2005-2501 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Aug 19, 2005 N/A· v4 N/A· v3 7.6 HIGH· v2 Buffer overflow in AppKit for Mac OS X 10.3.9 and 10.4.2 allows external user-assisted attackers to execute arbitrary code via a crafted Rich Text Format (RTF) file.
CVE-2005-1689 3Apple DebianMit 4Debian Linux Kerberos 5Mac Os X+1 more Apr 16, 2026 Jul 18, 2005 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.
CVE-2005-1722 1Apple 2Mac Os X Mac Os X Server Apr 16, 2026 Jun 16, 2005 N/A· v4 N/A· v3 7.2 HIGH· v2 Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions.
CVE-2005-1933 1Apple 1Mac Os X Apr 16, 2026 Jun 13, 2005 N/A· v4 N/A· v3 7.5 HIGH· v2 Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute arbitrary commands by overriding the behavior of system widgets via a user widget with the same bundle identifier (CFBundleIdentifier), a different vulne...Show more Dashboard in Apple Mac OS X Tiger 10.4 allows attackers to execute arbitrary commands by overriding the behavior of system widgets via a user widget with the same bundle identifier (CFBundleIdentifier), a different vulnerability than CVE-2005-1474.Show less

Previous 1...152153154...161 Next