CVE-2005-3704 | Vulnerability Database | Aqua Security

System log server in Mac OS X and OS X Server 10.4 through 10.4.3 allows remote attackers to spoof syslog messages in log files by injecting various control characters such as newline (NL).

Affected Software

Name	Vendor	Start Version	End Version
Mac_os_x	Apple	10.4 (including)	10.4 (including)
Mac_os_x	Apple	10.4.1 (including)	10.4.1 (including)
Mac_os_x	Apple	10.4.2 (including)	10.4.2 (including)
Mac_os_x	Apple	10.4.3 (including)	10.4.3 (including)
Mac_os_x_server	Apple	10.4 (including)	10.4 (including)
Mac_os_x_server	Apple	10.4.1 (including)	10.4.1 (including)
Mac_os_x_server	Apple	10.4.2 (including)	10.4.2 (including)
Mac_os_x_server	Apple	10.4.3 (including)	10.4.3 (including)

References

http://docs.info.apple.com/article.html?artnum=302847
http://secunia.com/advisories/17813
http://securitytracker.com/id?1015293
http://www.osvdb.org/21277
http://www.securityfocus.com/bid/15647
http://www.vupen.com/english/advisories/2005/2659
https://exchange.xforce.ibmcloud.com/vulnerabilities/23344

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3704
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html