Quicktime Streaming Server Security Vulnerabilities and Issues — Quicktime Streaming Server CVE List

Lucene search

AppleQuicktime Streaming Server

4 matches found

CVE•added 2007/10/20 10:0 a.m.•55 views

CVE-2003-1414

Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot) in the filename parameter.

4.3CVSS6.3AI score0.02664EPSS

CVE•added 2004/09/01 4:0 a.m.•47 views

CVE-2003-0053

Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into an error message.

4.3CVSS5.5AI score0.00392EPSS

CVE•added 2007/10/20 10:0 a.m.•46 views

CVE-2003-1413

parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages.

4.3CVSS6.7AI score0.00267EPSS

CVE•added 2005/04/14 4:0 a.m.•37 views

CVE-2004-1089

Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users.

4.6CVSS8.2AI score0.00093EPSS