| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-0125 | 7.2 |
The "at" commands on Mac OS X 10.3.7 and earlier do not properly drop privileges, which allows local users to (1) delete arbitrary files via atrm, (2) execute arbitrary programs via the -f argument to batch, or (3) read arbitrary files via the -f arg
|
13-08-2018 - 21:47 | 02-05-2005 - 04:00 | |
| CVE-2004-1036 | 6.8 |
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and earlier, and 1.5.1-cvs before 23rd October 2004, allows remote attackers to execute arbitrary web script or HTML.
|
11-10-2017 - 01:29 | 01-03-2005 - 05:00 | |
| CVE-2004-0989 | 10.0 |
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy
|
11-10-2017 - 01:29 | 01-03-2005 - 05:00 | |
| CVE-2005-0126 | 7.5 |
ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap.
|
11-07-2017 - 01:32 | 02-05-2005 - 04:00 | |
| CVE-2005-0127 | 5.0 |
Mail in Mac OS X 10.3.7, when generating a Message-ID header, generates a GUUID that includes information that identifies the Ethernet hardware being used, which allows remote attackers to link mail messages to a particular machine.
|
11-07-2017 - 01:32 | 02-05-2005 - 04:00 | |
| CVE-2004-1314 | 7.5 |
Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "win
|
11-07-2017 - 01:30 | 10-01-2005 - 05:00 |