Vulnerabilities > Apple > Darwin Streaming Server
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-02 | CVE-2004-1084 | Remote And Local vulnerability in Apple Mac OS X Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles. | 5.0 |
2004-12-02 | CVE-2004-1081 | Remote And Local vulnerability in Apple Mac OS X The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. | 2.1 |
2004-03-15 | CVE-2004-0169 | Remote Denial of Service vulnerability in Apple Darwin Streaming Server 4.1.3 QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function. | 5.0 |
2003-12-31 | CVE-2003-1414 | Path Traversal vulnerability in Apple products Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... | 4.3 |
2003-12-31 | CVE-2003-1413 | Path Traversal vulnerability in Apple products parse_xml.cgi in Apple Darwin Streaming Server 4.1.1 allows remote attackers to determine the existence of arbitrary files by using ".." sequences in the filename parameter and comparing the resulting error messages. | 4.3 |
2003-08-27 | CVE-2003-0502 | Denial-Of-Service vulnerability in Darwin Streaming Server Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. | 10.0 |
2003-08-27 | CVE-2003-0426 | Remote Security vulnerability in Apple Darwin Streaming Server 4.1.3 The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator. | 10.0 |
2003-08-27 | CVE-2003-0425 | Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3 Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... | 5.0 |
2003-08-27 | CVE-2003-0424 | Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3 Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . | 5.0 |
2003-08-27 | CVE-2003-0423 | Unspecified vulnerability in Apple Darwin Streaming Server 4.1.3 parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter. | 5.0 |