Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Apple Subscribe
Filtered by product Darwin Streaming Server
Total 27 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0502 1 Apple 1 Darwin Streaming Server 2011-03-07 10.0 HIGH N/A
Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0421.
CVE-2003-0422 1 Apple 1 Darwin Streaming Server 2008-09-10 5.0 MEDIUM N/A
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via a request to view_broadcast.cgi that does not contain the required parameters.
CVE-2003-0423 1 Apple 1 Darwin Streaming Server 2008-09-10 5.0 MEDIUM N/A
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.
CVE-2003-0424 1 Apple 1 Darwin Streaming Server 2008-09-10 5.0 MEDIUM N/A
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the script, e.g. view_broadcast.cgi.
CVE-2003-0425 1 Apple 1 Darwin Streaming Server 2008-09-10 5.0 MEDIUM N/A
Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... (triple dot) in an HTTP request.
CVE-2003-0426 1 Apple 1 Darwin Streaming Server 2008-09-05 10.0 HIGH N/A
The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator.
CVE-2003-0421 1 Apple 1 Darwin Streaming Server 2008-09-05 10.0 HIGH N/A
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0502.