55 matches found
EUVD-2003-0415
Malware in sbrugna...
EUVD-2003-0418
Malware in sbrugna...
EUVD-2003-0496
Malware in sbrugna...
EUVD-2005-2196
Malware in sbrugna...
EUVD-2003-1403
Malware in sbrugna...
EUVD-2003-0416
Malware in sbrugna...
EUVD-2004-1121
Malware in sbrugna...
EUVD-2003-1404
Malware in sbrugna...
EUVD-2003-0048
Malware in sbrugna...
EUVD-2003-0417
Malware in sbrugna...
Apple QuickTime/Darwin Streaming Server 4.1.x parse_xml.cgi File Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6990/info A file retrieval vulnerability has been reported for QuickTime/Darwin Streaming Server. The vulnerability exists due to insufficient sanitization of some parameters given to the parsexml.cgi script. Information...
Apple QuickTime/Darwin Streaming Server 4.1.3 QTSSReflector Module Integer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7659/info A vulnerability has been reported for Apple QuickTime/Darwin Streaming Server. The problem is said to occur within the QTSSReflector module while processing the ANNOUNCE command. Specifically, by specifying an...
Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Exploit
No description provided by source. !/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote root compromise: $filenam...
FreeBSD : Darwin Streaming Server denial-of-service vulnerability (c7cad0f0-671a-11d8-bdeb-000a95bc6fae)
An attacker can cause an assertion to trigger by sending a long User-Agent field in a request. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques Vidrine and...
CVE-2003-1413
parsexml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages...
CVE-2003-1413
The CVE-2003-1413 entry concerns Apple Darwin Streaming Server 4.1.1, where parse_xml.cgi is vulnerable to a path-based check that leaks file existence information. By supplying a filename parameter containing ".." sequences, an attacker can trigger distinct error messages that allow remote deter...
CVE-2003-1414
CVE-2003-1414 describes a directory traversal vulnerability in the parse_xml.cgi component of Apple Darwin Streaming Server 4.1.2 and Apple QuickTime Streaming Server 4.1.1. The issue allows remote attackers to read arbitrary files by manipulating the filename parameter. The vulnerability affects...
CVE-2007-0749
Multiple stack-based buffer overflows in the iscommand function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allow remote attackers to execute arbitrary code via a long 1 cmd or 2 server value in an RTSP request...
CVE-2005-2195
Apple Darwin Streaming Server 5.5 and earlier allows remote attackers to cause a denial of service application crash via a URL with a filename containing a .cgi extension and an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1, a different vulnerability than CVE-2003-0421 and CVE-2003-0502...
Apple Darwin Streaming Server special device name DoS
DoS with Web interface while requesting document with special DOS device name...