Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-1042 | 7.5 |
Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.
|
30-10-2018 - 16:25 | 02-05-2005 - 04:00 | |
CVE-2005-1043 | 5.0 |
exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.
|
30-10-2018 - 16:25 | 14-04-2005 - 04:00 | |
CVE-2005-0525 | 5.0 |
The php_next_marker function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a JPEG image with an invalid marker value, which c
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-0524 | 5.0 |
The php_handle_iff function in image.c for PHP 4.2.2, 4.3.9, 4.3.10 and 5.0.3, as reachable by the getimagesize PHP function, allows remote attackers to cause a denial of service (infinite loop) via a -8 size value.
|
03-05-2018 - 01:29 | 02-05-2005 - 04:00 | |
CVE-2005-1726 | 4.6 |
The CoreGraphics Window Server in Mac OS X 10.4.1 allows local users with console access to gain privileges by "launching commands into root sessions."
|
11-07-2017 - 01:32 | 31-12-2005 - 05:00 | |
CVE-2005-1725 | 2.1 |
launchd 106 in Apple Mac OS X 10.4.x up to 10.4.1 allows local users to overwrite arbitrary files via a symlink attack on the socket file in an insecure temporary directory.
|
18-10-2016 - 03:22 | 08-06-2005 - 04:00 | |
CVE-2005-1723 | 7.5 |
LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to the database of unsafe types, which could allow at
|
05-09-2008 - 20:49 | 08-06-2005 - 04:00 | |
CVE-2005-1721 | 7.5 |
Buffer overflow in the legacy client support for AFP Server for Mac OS X 10.4.1 allows attackers to execute arbitrary code.
|
05-09-2008 - 20:49 | 16-06-2005 - 04:00 | |
CVE-2005-1724 | 7.5 |
NFS on Apple Mac OS X 10.4.x up to 10.4.1 does not properly obey the -network or -mask flags for a filesystem and exports it to everyone, which allows remote attackers to bypass intended access restrictions.
|
05-09-2008 - 20:49 | 08-06-2005 - 04:00 | |
CVE-2005-1720 | 2.1 |
AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permissions for that ACL.
|
05-09-2008 - 20:49 | 16-06-2005 - 04:00 | |
CVE-2005-1728 | 4.6 |
MCX Client for Apple Mac OS X 10.4.x up to 10.4.1 insecurely logs Portable Home Directory credentials, which allows local users to obtain the credentials.
|
05-09-2008 - 20:49 | 08-06-2005 - 04:00 | |
CVE-2005-1722 | 7.2 |
Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions.
|
05-09-2008 - 20:49 | 16-06-2005 - 04:00 | |
CVE-2005-1727 | 3.7 |
Apple Mac OS X 10.4.x up to 10.4.1 sets insecure world- and group-writable permissions for the (1) system cache folder and (2) Dashboard system widgets, which allows local users to conduct unauthorized file operations via "file race conditions."
|
05-09-2008 - 20:49 | 08-06-2005 - 04:00 | |
CVE-2005-1343 | 7.2 |
Stack-based buffer overflow in the VPN daemon (vpnd) for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i (Server_id) argument.
|
05-09-2008 - 20:48 | 03-05-2005 - 04:00 | |
CVE-2005-1333 | 5.0 |
Directory traversal vulnerability in the Bluetooth file and object exchange (OBEX) services in Mac OS X 10.3.9 allows remote attackers to read arbitrary files.
|
05-09-2008 - 20:48 | 04-05-2005 - 04:00 |