Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quicktime streaming server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0050
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute arbitrary code via shell metacharacters.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
NA
CVE-2003-0051
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to obtain the physical path of the server's installation path via a NULL file parameter.
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.2
NA
CVE-2003-0052
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to list arbitrary directories.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
NA
CVE-2003-0053
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to insert arbitrary script via the filename parameter, which is inserted into an error message.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
NA
CVE-2003-0054
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when...
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
NA
CVE-2003-1413
parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote malicious users to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
NA
CVE-2003-1414
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote malicious users to read arbitrary files via a ... (triple dot) in the filename parameter.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
NA
CVE-2004-0169
QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote malicious users to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function.
Apple Darwin Streaming Server 4.1.3
NA
CVE-2003-0502
Apple QuickTime / Darwin Streaming Server prior to 4.1.3g allows remote malicious users to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0421.
Apple Darwin Streaming Server
NA
CVE-2003-0423
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server prior to 4.1.3g allows remote malicious users to obtain the source code for parseable files via the filename parameter.
Apple Darwin Streaming Server 4.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »