cbcvebase.
CVE-2003-1414
published 2003-12-31

CVE-2003-1414: Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to…

medium4.3CVSS 3.1
AVNACMAuNCPINAN
EXPLOIT
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot) in the filename parameter.

Affected

2 ranges
VendorProductVersion rangeFixed in
appledarwin_streaming_server
applequicktime_streaming_server