Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quicktime streaming server vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2003-1413
parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote malicious users to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
435
VMScore
CVE-2003-1414
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote malicious users to read arbitrary files via a ... (triple dot) in the filename parameter.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
445
VMScore
CVE-2003-0051
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to obtain the physical path of the server's installation path via a NULL file parameter.
Apple Quicktime Streaming Server 4.1.1
Apple Darwin Streaming Server 4.1.2
445
VMScore
CVE-2003-0052
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to list arbitrary directories.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
383
VMScore
CVE-2003-0053
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to insert arbitrary script via the filename parameter, which is inserted into an error message.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
755
VMScore
CVE-2003-0050
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute arbitrary code via shell metacharacters.
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
1 EDB exploit
668
VMScore
CVE-2003-0054
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote malicious users to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when...
Apple Darwin Streaming Server 4.1.2
Apple Quicktime Streaming Server 4.1.1
445
VMScore
CVE-2004-0169
QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote malicious users to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function.
Apple Darwin Streaming Server 4.1.3
890
VMScore
CVE-2003-0502
Apple QuickTime / Darwin Streaming Server prior to 4.1.3g allows remote malicious users to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0421.
Apple Darwin Streaming Server
445
VMScore
CVE-2003-0423
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server prior to 4.1.3g allows remote malicious users to obtain the source code for parseable files via the filename parameter.
Apple Darwin Streaming Server 4.1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »