Medium Published: Aug 27, 2003 Modified: Apr 03, 2025

CVE-2003-0423

5 CVSS SCORE

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Description

parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.

CVSS Vector Details

Attack Vector Network

Attack Complexity Low

Confidentiality P

Integrity None

Availability None

Affected Software Configurations

a apple darwin_streaming_server 4.1.3 * * * * * * *

Weaknesses (CWE)

NVD-CWE-Other

References & External Links

http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
http://www.rapid7.com/advisories/R7-0015.html
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
http://www.rapid7.com/advisories/R7-0015.html

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker