Lucene search
K

364 matches found

Cvelist
Cvelist
added 2007/10/20 10:0 a.m.21 views

CVE-2003-1413

parsexml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages...

6.3AI score0.01209EPSS
Exploits1References4
CVE
CVE
added 2007/10/20 10:0 a.m.72 views

CVE-2003-1414

CVE-2003-1414 describes a directory traversal vulnerability in the parse_xml.cgi component of Apple Darwin Streaming Server 4.1.2 and Apple QuickTime Streaming Server 4.1.1. The issue allows remote attackers to read arbitrary files by manipulating the filename parameter. The vulnerability affects...

4.3CVSS6.3AI score0.04456EPSS
Exploits1References4Affected Software2
securityvulns
securityvulns
added 2007/06/04 12:0 a.m.59 views

2007-06-03: PeerCast streaming server submits cleartext password

Hi there, peercast also submits the configured password in cleartext. e.g. http://www.domain.tld:7144/admin?cmd=login&pass=asdfg.jodi.org&submit=Login well, I have just played a bit around with it, so I assume this is already known. Solution might be to use stunnel. Have Fun : Greetz mpeg...

Exploits0
Cvelist
Cvelist
added 2007/05/13 10:0 p.m.27 views

CVE-2007-0749

Multiple stack-based buffer overflows in the iscommand function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allow remote attackers to execute arbitrary code via a long 1 cmd or 2 server value in an RTSP request...

7.5AI score0.06491EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.24 views

Debian DSA-901-1 : gnump3d - programming error

Several vulnerabilities have been discovered in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-3349 Ludwig Nussel discovered several temporary files that are created with predictable filenames in a...

6.4CVSS5.4AI score0.02226EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.37 views

Debian DSA-877-1 : gnump3d - XSS, directory traversal

Steve Kemp discovered two vulnerabilities in gnump3d, a streaming server for MP3 and OGG files. The Common Vulnerabilities and Exposures Project identifies the following problems : - CVE-2005-3122 The 404 error page does not strip malicious JavaScript content from the resulting page, which would ...

5CVSS5.6AI score0.02982EPSS
Exploits1References4
Prion
Prion
added 2006/05/12 9:2 p.m.20 views

Buffer overflow

Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...

7.5CVSS7.8AI score0.06055EPSS
Exploits0References8Affected Software2
NVD
NVD
added 2006/05/12 9:2 p.m.14 views

CVE-2006-1456

Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...

7.5CVSS7.6AI score0.06055EPSS
Exploits0References8
Prion
Prion
added 2006/05/12 9:2 p.m.22 views

Design/Logic Flaw

QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...

7.8CVSS6.5AI score0.03901EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2006/05/12 9:0 p.m.25 views

CVE-2006-1455

QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to cause a denial of service crash and connection interruption via a QuickTime movie with a missing track, which triggers a null dereference...

6.2AI score0.03901EPSS
Exploits0References8
CVE
CVE
added 2006/05/12 9:0 p.m.48 views

CVE-2006-1455

The CVE-2006-1455 issue affects Apple QuickTime Streaming Server on Mac OS X 10.3.9 and 10.4.6. The vulnerability allows remote attackers to cause a denial of service (crash and connection interruption) by processing a QuickTime movie with a missing track, which triggers a null dereference. Impac...

7.8CVSS6.2AI score0.03901EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2006/05/12 9:0 p.m.18 views

CVE-2006-1456

Buffer overflow in QuickTime Streaming Server in Apple Mac OS X 10.3.9 and 10.4.6 allows remote attackers to execute arbitrary code via a crafted RTSP request, which is not properly handled during message logging...

7.6AI score0.06055EPSS
Exploits0References8
CVE
CVE
added 2006/05/12 9:0 p.m.57 views

CVE-2006-1456

Technical details about CVE-2006-1456 are not publicly available in the provided connected documents; the materials primarily repeat the CVE description without additional specifics. Monitor for updates.

7.5CVSS7.6AI score0.06055EPSS
Exploits0References8Affected Software2
securityvulns
securityvulns
added 2006/05/12 12:0 a.m.49 views

Apple Quick Time Streaming Server buffer overflow

Buffer overflow on RTSP protocol headers parsing...

4.1AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2006/04/25 12:0 a.m.35 views

Fenice Oms 1.10 - GET Remote Buffer Overflow

Fenice Oms 1.10 - GET Remote Buffer Overflow / IHS Iran Homeland Security public source code Fenice - Open Media Streaming Server remote BOF exploit author : c0d3r "kaveh razavi" [email protected] package : fenice-1.10.tar.gz and prolly prior versions workaround : update after patch release...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2006/04/25 12:0 a.m.21 views

Fenice OMS 1.10 (long get request) Remote Buffer Overflow Exploit

No description provided by source. / IHS Iran Homeland Security public source code Fenice - Open Media Streaming Server remote BOF exploit author : c0d3r "kaveh razavi" [email protected] package : fenice-1.10.tar.gz and prolly prior versions workaround : update after patch release advisory :...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2006/04/24 12:0 a.m.72 views

Fenice OMS Open Media Streaming Server multiple security vulnerabilities

Buffer overflow on URI parsing, integer overflow on Content-Length...

5.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/03/09 12:0 a.m.23 views

INFIGO-2006-03-01: PeerCast streaming server remote buffer overflow

INFIGO IS Security Advisory INFIGO-2006-03-01 http://www.infigo.hr/ Title: PeerCast streaming server remote buffer overflow Advisory ID: INFIGO-2006-03-01 Date: 2006-03-08 Advisory URL: http://www.infigo.hr/infocus/INFIGO-2006-03-01 Impact: Remote code execution Risk Level: High Vulnerability Typ...

0.1AI score
Exploits0
Debian
Debian
added 2005/11/19 7:16 a.m.49 views

[SECURITY] [DSA 901-1] New gnump3d packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 901-1 [email protected] http://www.debian.org/security/ Martin Schulze November 19th, 2005 http://www.debian.org/security/faq -...

6.4CVSS0.4AI score0.02226EPSS
Exploits0
OSV
OSV
added 2005/11/19 12:0 a.m.18 views

DSA-901-1 gnump3d - programming error

Bulletin has no description...

6.4CVSS6.1AI score0.02226EPSS
Exploits0
Rows per page
Query Builder