2 matches found
CVE-2003-0425
Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... triple dot in an HTTP request...
CVE-2003-0425
Apple QuickTime/Darwin Streaming Server before 4.1.3f (Win32) is vulnerable to Web Root Traversal and Arbitrary File Disclosure via HTTP requests containing three dots to break out of the web root (e.g., /.../qtusers). The issue affects Darwin Streaming Server v4.1.3e and earlier (Win32). Fixed: ...