Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.3.9  Security Vulnerabilities
CVE-2005-1338
Mac OS X 10.3.9, when using an LDAP server that does not use ldap_extended_operation, may store initial LDAP passwords for new accounts in plaintext.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-05-04
CVE-2005-1339
lukemftpd in Mac OS X 10.3.9 allows remote authenticated users to escape the chroot environment by logging in with their full name.
CVSS Score
7.5
EPSS Score
0.006
Published
2005-05-04
CVE-2005-1340
The HTTP proxy service in Server Admin for Mac OS X 10.3.9 does not restrict access when it is enabled, which allows remote attackers to use the proxy.
CVSS Score
7.5
EPSS Score
0.006
Published
2005-05-04
CVE-2005-1341
Apple Terminal 1.4.4 allows attackers to execute arbitrary commands via terminal escape sequences.
CVSS Score
5.1
EPSS Score
0.008
Published
2005-05-04
CVE-2005-1342
The x-man-page: URI handler for Apple Terminal 1.4.4 in Mac OS X 10.3.9 does not cleanse terminal escape sequences, which allows remote attackers to execute arbitrary commands.
CVSS Score
7.5
EPSS Score
0.177
Published
2005-05-04
CVE-2005-1343
Stack-based buffer overflow in the VPN daemon (vpnd) for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i (Server_id) argument.
CVSS Score
7.2
EPSS Score
0.001
Published
2005-05-03
CVE-2005-1430
Mac OS X 10.3.x and earlier uses insecure permissions for a pseudo terminal tty (pty) that is managed by a non-setuid program, which allows local users to read or modify sessions of other users.
CVSS Score
3.6
EPSS Score
0.0
Published
2005-05-03
CVE-2005-0970
Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts.
CVSS Score
7.6
EPSS Score
0.004
Published
2005-05-02
CVE-2005-1043
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
CVSS Score
5.0
EPSS Score
0.011
Published
2005-04-14
CVE-2004-1307
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.
CVSS Score
7.5
EPSS Score
0.051
Published
2004-12-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved