Lucene search
K

4283 matches found

exploitpack
exploitpack
added 2003/05/22 12:0 a.m.15 views

Apple QuickTimeDarwin Streaming Server 4.1.3 QTSSReflector Module - Integer Overflow

Apple QuickTimeDarwin Streaming Server 4.1.3 QTSSReflector Module - Integer Overflow source: https://www.securityfocus.com/bid/7659/info A vulnerability has been reported for Apple QuickTime/Darwin Streaming Server. The problem is said to occur within the QTSSReflector module while processing the...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/05/22 12:0 a.m.24 views

Apple QuickTime/Darwin Streaming Server 4.1.3 QTSSReflector Module - Integer Overflow

source: https://www.securityfocus.com/bid/7659/info A vulnerability has been reported for Apple QuickTime/Darwin Streaming Server. The problem is said to occur within the QTSSReflector module while processing the ANNOUNCE command. Specifically, by specifying an extremely large value as an argumen...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2003/05/21 12:0 a.m.32 views

WsMp3 Daemon (WsMp3d) HTTP Traversal Arbitrary File Execution/Access

The remote host is using wsmp3d, an MP3 streaming web server. There is a flaw in this server that allows anyone to execute arbitrary commands and read arbitrary files with the privileges this server is running with. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid1164...

5CVSS5.9AI score0.03032EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2003/05/21 12:0 a.m.27 views

Helix Servers View Source Plug-in RTSP Parser Overflow

The remote host is running RealServer or Helix Universal Server, media streaming servers. According to its banner, the version of the server installed on the remote host may be affected by a buffer overflow vulnerability when handling URLs with many '/' characters and another when handling...

7.5CVSS6.1AI score0.51246EPSS
Exploits2References5
NVD
NVD
added 2003/03/07 5:0 a.m.25 views

CVE-2003-0050

parsexml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters...

7.5CVSS7.4AI score0.68858EPSS
Exploits3References4
NVD
NVD
added 2003/03/07 5:0 a.m.28 views

CVE-2003-0053

Cross-site scripting XSS vulnerability in parsexml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message...

4.3CVSS5.5AI score0.01817EPSS
Exploits0References4
NVD
NVD
added 2003/03/07 5:0 a.m.18 views

CVE-2003-0055

Buffer overflow in the MP3 broadcasting module of Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via a long filename...

7.5CVSS7.5AI score0.03109EPSS
Exploits0References4
NVD
NVD
added 2003/03/07 5:0 a.m.30 views

CVE-2003-0054

Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when the log is viewed usin...

7.5CVSS6.6AI score0.02344EPSS
Exploits0References4
securityvulns
securityvulns
added 2003/03/03 12:0 a.m.32 views

Re: QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Word. I've found two other issues in QuickTime Streaming Server v4.1.1 that seem to be fixed in the newest v4.1.3: 1. File probing: Request: http://localhost:1220/parsexml.cgi?filename=../nonexistent Response: 'Can't access HTML file '../nonexistent'!...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2003/02/28 12:0 a.m.24 views

Apple QuickTimeDarwin Streaming Server 4.1.x - parse_xml.cgi File Disclosure

Apple QuickTimeDarwin Streaming Server 4.1.x - parsexml.cgi File Disclosure source: https://www.securityfocus.com/bid/6990/info A file retrieval vulnerability has been reported for QuickTime/Darwin Streaming Server. The vulnerability exists due to insufficient sanitization of some parameters give...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2003/02/26 12:0 a.m.59 views

QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities Release Date: 03-24-2003 Application: Darwin Streaming Server 4.1.2 QuickTime Streaming Server 4.1.1 Platform: MacO...

7.5CVSS1.1AI score0.68858EPSS
Exploits3
0day.today
0day.today
added 2003/02/24 12:0 a.m.50 views

Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Expl

Exploit for macOS platform in category remote exploits ======================================================================= Darwin Streaming Server 'filename'; $templatefile = $query-'template'; Based on http://wbyte.ath.cx/wbyte/researches/qtss-core.txt use IO::Socket; use LWP::Simple; use LW...

7AI score
Exploits0
exploitpack
exploitpack
added 2003/02/24 12:0 a.m.20 views

Darwin Streaming Server 4.1.2 - parse_xml.cgi Code Execution

Darwin Streaming Server 4.1.2 - parsexml.cgi Code Execution !/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote...

0.1AI score
Exploits0
seebug.org
seebug.org
added 2003/02/24 12:0 a.m.19 views

Darwin Streaming Server <= 4.1.2 (parse_xml.cgi) Code Execution Exploit

No description provided by source. !/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote root compromise: $filenam...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2003/02/24 12:0 a.m.38 views

Darwin Streaming Server 4.1.2 - &#039;parse_xml.cgi&#039; Code Execution

!/usr/bin/perl QTTS REMOTE ROOT exploit by FOXMULDER [email protected] FOXMULDER PRESENTS foxmulderatabv.bg DarwinOSX4.x? 5.X QTSSQuick Time Stream Server 3.X The bug in Darwin 5.X with unpatched QTSS in parsexml.cgi which lead to remote root compromise: $filename = $query-'filename'; $templatefil...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2002/06/25 4:0 a.m.54 views

CVE-2001-1083

Icecast 1.3.7, and other versions before 1.3.11 with HTTP server file streaming support enabled allows remote attackers to cause a denial of service crash via a URL that ends in . dot, / forward slash, or \ backward slash...

6.3AI score0.09628EPSS
Exploits2References9
securityvulns
securityvulns
added 2002/05/17 12:0 a.m.25 views

[RHSA-2002:078-04] Updated mpg321 packages available

--------------------------------------------------------------------- Red Hat, Inc. Red Hat Security Advisory Synopsis: Updated mpg321 packages available Advisory ID: RHSA-2002:078-04 Issue date: 2002-04-30 Updated on: 2002-05-06 Product: Red Hat Linux Keywords: mp321 buffer overflow network Cros...

10CVSS7.5AI score0.05479EPSS
Exploits0
securityvulns
securityvulns
added 2001/01/19 12:0 a.m.40 views

Shoutcast Server Buffer Crashes Server

The following information is being released by PA Networks to expose a potential problem with the Shoutcast server for Linux version v1.7.1 for Shoutcast Distributed Network Audio Server. During testing of new streams the following was discovered. Software Needed To Perform This Overflow: Winamp...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2000/05/31 12:0 a.m.12 views

Microsoft Windows Media Services 4.04.1 - Denial of Service (MS00-038)

Microsoft Windows Media Services 4.04.1 - Denial of Service MS00-038 // source: https://www.securityfocus.com/bid/1282/info Windows Media Encoder is part of Windows Media Services. It's purpose is to convert content into a suitable format for video or audio streaming through the Media Services. I...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2000/04/20 12:0 a.m.75 views

Remote DoS attack in Real Networks Real Server Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Remote DoS attack in Real Networks Real Server Vulnerability "with a 412 byte attack EVERY RealServer is vulnerable to this D.O.S attack" USSR Advisory Code: USSR-2000038 Release Date: April 20, 2000 Systems Affected: Real Networks Real Server 7 linux...

7.1AI score
Exploits0
Rows per page
Query Builder