2 matches found
CVE-2003-0053
Cross-site scripting XSS vulnerability in parsexml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message...
CVE-2003-0053
CVE-2003-0053 describes an XSS vulnerability in parse_xml.cgi used by Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1. An attacker can supply a crafted filename parameter, which is reflected in an error message, allowing arbitrary script execution in the vi...