271021
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) chfn, (2) chpass, and (3) chsh, which "use external helper programs in an insecure manner."
|
NVD-CWE-Other
|
CVE-2005-1335
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271022
|
- |
|
apple
|
mac_os_x
|
Buffer overflow in the Foundation framework for Mac OS X 10.3.9 allows local users to execute arbitrary code via a long environment variable.
|
NVD-CWE-Other
|
CVE-2005-1336
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271023
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Apple Help Viewer 2.0.7 and 3.0.0 in Mac OS X 10.3.9 allows remote attackers to read and execute arbitrary scrpts with less restrictive privileges via a help:// URI.
|
NVD-CWE-Other
|
CVE-2005-1337
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271024
|
- |
|
apple
|
mac_os_x
|
Mac OS X 10.3.9, when using an LDAP server that does not use ldap_extended_operation, may store initial LDAP passwords for new accounts in plaintext.
|
NVD-CWE-Other
|
CVE-2005-1338
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271025
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
lukemftpd in Mac OS X 10.3.9 allows remote authenticated users to escape the chroot environment by logging in with their full name.
|
NVD-CWE-Other
|
CVE-2005-1339
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271026
|
- |
|
apple
|
mac_os_x
|
The HTTP proxy service in Server Admin for Mac OS X 10.3.9 does not restrict access when it is enabled, which allows remote attackers to use the proxy.
|
NVD-CWE-Other
|
CVE-2005-1340
|
2008-09-6 05:48 |
2005-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271027
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Stack-based buffer overflow in the VPN daemon (vpnd) for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i (Server_id) argument.
|
NVD-CWE-Other
|
CVE-2005-1343
|
2008-09-6 05:48 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271028
|
- |
|
symantec
|
antivirus_scan_engine mail_security norton_antivirus norton_internet_security norton_system_works symav_filter_domino_nt web_security
|
Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11.0.0, Web Security Web Security 3.0.1.72, Mail Security for SMTP 4.0.5.66, AntiVirus Scan Engine 4.3.7.27, SAV/Filter for Domin…
|
NVD-CWE-Other
|
CVE-2005-1346
|
2008-09-6 05:48 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271029
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs.
|
NVD-CWE-Other
|
CVE-2005-0682
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
271030
|
- |
|
mlterm
|
mlterm
|
Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf support enabled, allows remote attackers to execute arbitrary code via a large image file that is used as a background.
|
NVD-CWE-Other
|
CVE-2005-0686
|
2008-09-6 05:47 |
2005-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|