Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple darwin streaming server 4.1.2 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2007-0748
Heap-based buffer overflow in Apple Darwin Streaming Proxy, when using Darwin Streaming Server prior to 5.5.5, allows remote malicious users to execute arbitrary code via multiple trackID values in a SETUP RTSP request.
Apple Darwin Streaming Server 4.1.2
Apple Darwin Streaming Server 5.0.1
Apple Darwin Streaming Server 5.5.4
Apple Darwin Streaming Server 4.1.3
890
VMScore
CVE-2007-0749
Multiple stack-based buffer overflows in the is_command function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Streaming Server prior to 5.5.5, allow remote malicious users to execute arbitrary code via a long (1) cmd or (2) server value in an RTSP request.
Apple Darwin Streaming Server 4.1.2
Apple Darwin Streaming Server 5.0.1
Apple Darwin Streaming Server 5.5.4
Apple Darwin Streaming Server 4.1.3
445
VMScore
CVE-2003-0051
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to obtain the physical path of the server's installation path via a NULL file parameter.
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.2
383
VMScore
CVE-2003-0053
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to insert arbitrary script via the filename parameter, which is inserted into an error message.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
755
VMScore
CVE-2003-0050
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute arbitrary code via shell metacharacters.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
445
VMScore
CVE-2003-0052
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to list arbitrary directories.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
435
VMScore
CVE-2003-1414
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote malicious users to read arbitrary files via a ... (triple dot) in the filename parameter.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
383
VMScore
CVE-2003-1413
parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote malicious users to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
668
VMScore
CVE-2003-0054
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when...
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
668
VMScore
CVE-2003-0055
Buffer overflow in the MP3 broadcasting module of Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute arbitrary code via a long filename.
Apple Quicktime Darwin Mp3 Broadcaster
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started