6.2 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.9%
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a … (triple dot) in the filename parameter.
securityreason.com/securityalert/3260
www.securityfocus.com/archive/1/313517
www.securityfocus.com/bid/6990
exchange.xforce.ibmcloud.com/vulnerabilities/11446