High Published: Mar 07, 2003 Modified: Apr 03, 2025

CVE-2003-0050

7.5 CVSS SCORE

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Description

parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.

CVSS Vector Details

Attack Vector Network

Attack Complexity Low

Confidentiality P

Integrity P

Availability P

Affected Software Configurations

a apple darwin_streaming_server 4.1.2 * * * * * * *
a apple quicktime_streaming_server 4.1.1 * * * * * * *

Weaknesses (CWE)

NVD-CWE-Other

References & External Links

http://lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102.txt
http://marc.info/?l=bugtraq&m=104618904330226&w=2
http://www.iss.net/security_center/static/11401.php
http://www.securityfocus.com/bid/6954
http://lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102.txt
http://marc.info/?l=bugtraq&m=104618904330226&w=2
http://www.iss.net/security_center/static/11401.php
http://www.securityfocus.com/bid/6954

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker