Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.3.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2004-0538
LaunchServices in Mac OS X 10.3.4 and 10.2.8 automatically registers and executes new applications, which could allow malicious users to execute arbitrary code without warning the user.
Apple Mac Os X 10.2.8
Apple Mac Os X 10.3.4
Apple Mac Os X Server 10.2.8
Apple Mac Os X Server 10.3.4
10
CVSSv2
CVE-2004-0539
The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which could allow remote malicious users to execute arbitrary code.
Apple Mac Os X Server 10.3.4
Apple Mac Os X 10.3.4
Apple Mac Os X Server 10.2.8
Apple Mac Os X 10.2.8
7.2
CVSSv2
CVE-2004-0822
Buffer overflow in The Core Foundation framework (CoreFoundation.framework) in Mac OS X 10.2.8, 10.3.4, and 10.3.5 allows local users to execute arbitrary code via a certain environment variable.
Apple Mac Os X Server 10.2.8
Apple Mac Os X Server 10.3.4
Apple Mac Os X 10.2.8
Apple Mac Os X Server 10.3.5
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.5
7.2
CVSSv2
CVE-2004-0821
The CFPlugIn in Core Foundation framework in Mac OS X allows user supplied libraries to be loaded, which could allow local users to gain privileges.
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.5
Apple Mac Os X Server 10.2.8
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.5
Apple Mac Os X 10.2.8
4.6
CVSSv2
CVE-2005-0712
Mac OS X prior to 10.3.8 users world-writable permissions for certain directories, which may allow local users to gain privileges, possibly via the receipt cache or ColorSync profiles.
Apple Mac Os X 10.1
Apple Mac Os X 10.3.4
Apple Mac Os X 10.2
2.1
CVSSv2
CVE-2004-0622
Apple Mac OS X 10.3.4, 10.4, 10.5, and possibly other versions does not properly clear memory for login (aka Loginwindow.app), Keychain, or FileVault passwords, which could allow the root user or an attacker with physical access to obtain sensitive information by reading memory.
Apple Mac Os X 10.3.4
Apple Mac Os X 10.4
Apple Mac Os X 10.5
5
CVSSv2
CVE-2004-0925
Postfix on Mac OS X 10.3.x up to and including 10.3.5, with SMTPD AUTH enabled, does not properly clear the username between authentication attempts, which allows users with the longest username to prevent other valid users from being able to authenticate.
Apple Mac Os X 10.3
Apple Mac Os X 10.3.2
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.3
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.5
Apple Mac Os X Server 10.3
Apple Mac Os X Server 10.3.5
Apple Mac Os X 10.3.1
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.3.4
7.2
CVSSv2
CVE-2005-0125
The "at" commands on Mac OS X 10.3.7 and previous versions do not properly drop privileges, which allows local users to (1) delete arbitrary files via atrm, (2) execute arbitrary programs via the -f argument to batch, or (3) read arbitrary files via the -f argument to b...
Apple Mac Os X Server 10.3.7
Apple Mac Os X 10.3.7
Apple Mac Os X 10.3.4
7.2
CVSSv2
CVE-2005-0716
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.5
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.3
Apple Mac Os X 10.3
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.6
Apple Mac Os X 10.3.6
Apple Mac Os X 10.3.7
Apple Mac Os X 10.3.8
Apple Mac Os X Server 10.3
Apple Mac Os X 10.3.2
Apple Mac Os X 10.3.4
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.3.4
2 EDB exploits
1 Article
4.6
CVSSv2
CVE-2005-0713
The Bluetooth Setup Assistant for Mac OS X prior to 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges.
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.7
Apple Mac Os X Server 10.3.3
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.7
Apple Mac Os X 10.3.8
Apple Mac Os X Server 10.3
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.2
Apple Mac Os X 10.3
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.2
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
Apple Mac Os X 10.3.6
Apple Mac Os X Server 10.3.4
Apple Mac Os X Server 10.3.6
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »