Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote malicious users to read arbitrary files via a ... (triple dot) in the filename parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple darwin streaming server 4.1.2 |
||
apple quicktime streaming server 4.1.1 |