Lucene search
K

4230 matches found

Cvelist
Cvelist
added 2004/09/01 4:0 a.m.23 views

CVE-2003-0055

Buffer overflow in the MP3 broadcasting module of Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via a long filename...

7.5AI score0.03109EPSS
Exploits0References4
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.28 views

CVE-2004-0169

QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service crash via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function...

6.4AI score0.03474EPSS
Exploits0References7
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.26 views

CVE-2003-0052

parsexml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories...

6.2AI score0.01362EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.12 views

launch.yahoo.com Streaming Client Detection (deprecated)

Binary data 2525.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.25 views

FreeBSD : Darwin Streaming Server denial-of-service vulnerability (1)

The following package needs to be updated: DarwinStreamingServer %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgc7cad0f0671a11d8bdeb000a95bc6fae.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML :...

6.5AI score0.03474EPSS
Exploits0References21
Debian CVE
Debian CVE
added 2004/05/05 4:0 a.m.26 views

CVE-2004-0433

Multiple buffer overflows in the Real-Time Streaming Protocol RTSP client for 1 MPlayer before 1.0pre4 and 2 xine lib xine-lib before 1-rc4, when playing Real RTSP realrtsp streams, allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long URLs, b lo...

10CVSS7.5AI score0.05116EPSS
Exploits0
NVD
NVD
added 2004/03/15 5:0 a.m.29 views

CVE-2004-0169

QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service crash via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function...

5CVSS6.4AI score0.03474EPSS
Exploits0References7
CERT
CERT
added 2004/02/25 12:0 a.m.27 views

Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests

Overview Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests containing overly large User-Agent fields. This could allow an unauthenticated, remote attacker to cause a denial-of-service condition. Description Apple's QuickTime and Darwin Streaming Server is software...

5CVSS6AI score0.03474EPSS
Exploits0References3
securityvulns
securityvulns
added 2004/02/24 12:0 a.m.36 views

QuickTime/Darwin Streaming Server multiple bugs

Multiple bugs including uncommented shell characters, buffer overflows, etc...

4AI score
Exploits0References6Affected Software2
securityvulns
securityvulns
added 2004/02/24 12:0 a.m.39 views

[Full-Disclosure] iDEFENSE Security Advisory 02.23.04: Darwin Streaming Server Remote Denial of Service Vulnerability

iDEFENSE Security Advisory 02.23.04 Darwin Streaming Server Remote Denial of Service Vulnerability http://www.idefense.com/application/poi/display?id=75 February 23, 2004 I. BACKGROUND Darwin Streaming Server is server technology allowing for the streaming of QuickTime data to clients across the...

5CVSS0.5AI score0.03474EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/02/23 12:0 a.m.26 views

Darwin Streaming Server denial-of-service vulnerability

An attacker can cause an assertion to trigger by sending a long User-Agent field in a request...

5CVSS6.3AI score0.03474EPSS
Exploits0References1
NVD
NVD
added 2003/12/31 5:0 a.m.22 views

CVE-2003-1414

Directory traversal vulnerability in parsexml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... triple dot in the filename parameter...

4.3CVSS6.2AI score0.04456EPSS
Exploits1References4
NVD
NVD
added 2003/12/31 5:0 a.m.18 views

CVE-2003-1413

parsexml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages...

4.3CVSS6.3AI score0.01209EPSS
Exploits1References4
CERT
CERT
added 2003/12/23 12:0 a.m.18 views

Apple QuickTime/Darwin Streaming Server integer overflow in MP3Broadcaster utility

Overview Apple's QuickTime and Darwin Streaming Server DSS package includes a utility called MP3Broadcaster. This utility contains an integer overflow which may be exploited to cause a denial of service. Description Apple's QuickTime and Darwin Streaming Server is software which provides integrat...

7.7AI score
Exploits0References3
securityvulns
securityvulns
added 2003/09/23 12:0 a.m.292 views

mpg123[v0.59r,v0.59s]: remote client-side heap corruption exploit.

did an audit of mpg123my mp3 player of choice, found a remotely exploitable bug in audio streaming servicehttpget.c; applies to v0.59r and v0.59spre, up to current as of writing this. the exploit comments explain how it works and how to find the memory addresses neededif not already a target valu...

7.9AI score
Exploits0
Exploit DB
Exploit DB
added 2003/09/23 12:0 a.m.34 views

MPG123 0.59 - Remote File Play Heap Corruption

// source: https://www.securityfocus.com/bid/8680/info A problem in the handling of some types of remote files has been reported in mpg123. Because of this, it may be possible for a remote attacker to execute arbitrary code with the privileges of the mpg123 user. / mpg123v0.59r,v0.59s: remote...

7.4AI score
Exploits0
NVD
NVD
added 2003/08/27 4:0 a.m.22 views

CVE-2003-0424

Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space %20 or . %2e characters to an HTTP request for the script, e.g. viewbroadcast.cgi...

5CVSS6.5AI score0.0142EPSS
Exploits1References2
CVE
CVE
added 2003/07/25 4:0 a.m.46 views

CVE-2003-0425

Apple QuickTime/Darwin Streaming Server before 4.1.3f (Win32) is vulnerable to Web Root Traversal and Arbitrary File Disclosure via HTTP requests containing three dots to break out of the web root (e.g., /.../qtusers). The issue affects Darwin Streaming Server v4.1.3e and earlier (Win32). Fixed: ...

5CVSS6.2AI score0.01684EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2003/07/25 4:0 a.m.26 views

CVE-2003-0425

Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... triple dot in an HTTP request...

6.2AI score0.01684EPSS
Exploits1References2
CVE
CVE
added 2003/07/25 4:0 a.m.62 views

CVE-2003-0426

CVE-2003-0426 : In Apple QuickTime/Darwin Streaming Server, prior to 4.1.3f, the HTTP-based admin server presents a Setup Assistant on first install that allows a remote attacker to set the administrator password and gain privileges before the legitimate administrator. Affected: Darwin Streaming ...

10CVSS6.4AI score0.03425EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder