Lucene search
Joe TestaEDB-ID:22312HistoryFeb 28, 2003 - 12:00 a.m.
Apple QuickTime/Darwin Streaming Server 4.1.x - 'parse_xml.cgi' File Disclosure
2003-02-2800:00:00
Joe Testa
www.exploit-db.com
20
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/6990/info
A file retrieval vulnerability has been reported for QuickTime/Darwin Streaming Server. The vulnerability exists due to insufficient sanitization of some parameters given to the parse_xml.cgi script. Information obtained in this manner may be used by an attacker to launch more organinzed attacks against a vulnerable system.
This vulnerability was tested on SS for Microsoft Windows systems.
http://localhost:1220/parse_xml.cgi?filename=.../qtusers Related
cvelist
cvelist
CVE-2003-1414
2007-10-20 10:00:00
cve
cve
CVE-2003-1414
2007-10-20 10:00:00
nvd
nvd
CVE-2003-1414
2003-12-31 05:00:00
nessus
nessus
Apple QuickTime/Darwin Streaming Server Multiple Remote Vulnerabilities
2003-02-28 00:00:00
openvas
openvas