5
CVSSv2

CVE-2004-1123

Published: 10/01/2005 Updated: 11/07/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote malicious users to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte.

Affected Products

Vendor Product Versions
AppleDarwin Streaming Server4.1.3, 5.0.1
AppleQuicktime Streaming Server4.1.1
AppleMac Os X10.2, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 10.2.5, 10.2.6, 10.2.7, 10.2.8, 10.3, 10.3.1, 10.3.2, 10.3.3, 10.3.4, 10.3.5, 10.3.6
AppleMac Os X Server10.2, 10.2.1, 10.2.2, 10.2.3, 10.2.4, 10.2.5, 10.2.6, 10.2.7, 10.2.8, 10.3, 10.3.1, 10.3.2, 10.3.3, 10.3.4, 10.3.5, 10.3.6