364 matches found
CVE-2003-1413
parsexml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages...
CVE-2003-1414
CVE-2003-1414 describes a directory traversal vulnerability in the parse_xml.cgi component of Apple Darwin Streaming Server 4.1.2 and Apple QuickTime Streaming Server 4.1.1. The issue allows remote attackers to read arbitrary files by manipulating the filename parameter. The vulnerability affects...
2007-06-03: PeerCast streaming server submits cleartext password
Hi there, peercast also submits the configured password in cleartext. e.g. http://www.domain.tld:7144/admin?cmd=login&pass=asdfg.jodi.org&submit=Login well, I have just played a bit around with it, so I assume this is already known. Solution might be to use stunnel. Have Fun : Greetz mpeg...
CVE-2007-0749
Multiple stack-based buffer overflows in the iscommand function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allow remote attackers to execute arbitrary code via a long 1 cmd or 2 server value in an RTSP request...
Debian DSA-901-1 : gnump3d - programming error
Several vulnerabilities have been discovered in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-3349 Ludwig Nussel discovered several temporary files that are created with predictable filenames in a...
Debian DSA-877-1 : gnump3d - XSS, directory traversal
Steve Kemp discovered two vulnerabilities in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-3122 The 404 error page does not strip malicious JavaScript content from the resulting page, which would ...
Buffer overflow
Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...
CVE-2006-1456
Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...
Design/Logic Flaw
QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...
CVE-2006-1455
QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...
CVE-2006-1455
The CVE-2006-1455 issue affects Apple QuickTime Streaming Server on Mac OS X 10.3.9 and 10.4.6. The vulnerability allows remote attackers to cause a denial of service (crash and connection interruption) by processing a QuickTime movie with a missing track, which triggers a null dereference. Impac...
CVE-2006-1456
Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...
CVE-2006-1456
Technical details about CVE-2006-1456 are not publicly available in the provided connected documents; the materials primarily repeat the CVE description without additional specifics. Monitor for updates.
Apple Quick Time Streaming Server buffer overflow
Buffer overflow on RTSP protocol headers parsing...
Fenice Oms 1.10 - GET Remote Buffer Overflow
Fenice Oms 1.10 - GET Remote Buffer Overflow / IHS Iran Homeland Security public source code Fenice - Open Media Streaming Server remote BOF exploit author : c0d3r "kaveh razavi" [email protected] package : fenice-1.10.tar.gz and prolly prior versions workaround : update after patch release...
Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit
No description provided by source. / IHS Iran Homeland Security public source code Fenice - Open Media Streaming Server remote BOF exploit author : c0d3r "kaveh razavi" [email protected] package : fenice-1.10.tar.gz and prolly prior versions workaround : update after patch release advisory :...
Fenice OMS Open Media Streaming Server multiple security vulnerabilities
Buffer overflow on URI parsing, integer overflow on Content-Length...
INFIGO-2006-03-01: PeerCast streaming server remote buffer overflow
INFIGO IS Security Advisory INFIGO-2006-03-01 http://www.infigo.hr/ Title: PeerCast streaming server remote buffer overflow Advisory ID: INFIGO-2006-03-01 Date: 2006-03-08 Advisory URL: http://www.infigo.hr/infocus/INFIGO-2006-03-01 Impact: Remote code execution Risk Level: High Vulnerability Typ...
[SECURITY] [DSA 901-1] New gnump3d packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 901-1 [email protected] http://www.debian.org/security/ Martin Schulze November 19th, 2005 http://www.debian.org/security/faq -...
DSA-901-1 gnump3d - programming error
Bulletin has no description...