CVE-2003-0423 — Apple Darwin Streaming Server vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 30.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Darwin Streaming Server

Timeline

PublishedAug 27

Latest updateApr 29

Description

parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDapple/darwin_streaming_server4.1.3

🔴Vulnerability Details

GHSA

GHSA-x65w-xp74-jp4x: parse_xml↗2022-04-29

▶

CVEList

CVE-2003-0423: parse_xml↗2003-07-25

▶