Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote malicious users to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
apple quicktime streaming server 4.1.1 |
||
apple darwin streaming server 4.1.3 |
||
apple darwin streaming server 5.0.1 |
||
apple mac os x 10.2 |
||
apple mac os x 10.2.1 |
||
apple mac os x 10.2.2 |
||
apple mac os x 10.3 |
||
apple mac os x 10.3.1 |
||
apple mac os x server 10.2.1 |
||
apple mac os x server 10.2.2 |
||
apple mac os x server 10.3.1 |
||
apple mac os x server 10.3.2 |
||
apple mac os x 10.2.7 |
||
apple mac os x 10.2.8 |
||
apple mac os x 10.3.6 |
||
apple mac os x server 10.2 |
||
apple mac os x server 10.2.7 |
||
apple mac os x server 10.2.8 |
||
apple mac os x server 10.3 |
||
apple mac os x 10.2.5 |
||
apple mac os x 10.2.6 |
||
apple mac os x 10.3.4 |
||
apple mac os x 10.3.5 |
||
apple mac os x server 10.2.5 |
||
apple mac os x server 10.2.6 |
||
apple mac os x server 10.3.5 |
||
apple mac os x server 10.3.6 |
||
apple mac os x 10.2.3 |
||
apple mac os x 10.2.4 |
||
apple mac os x 10.3.2 |
||
apple mac os x 10.3.3 |
||
apple mac os x server 10.2.3 |
||
apple mac os x server 10.2.4 |
||
apple mac os x server 10.3.3 |
||
apple mac os x server 10.3.4 |
Vulmon