Directory Listing Vulnerability in Apple Streaming Servers
CVE-2003-0052

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime Streaming Server; Darwin Streaming Server
Vendor: CVE Published:; 7 March 2003

Summary

The parse_xml.cgi component in Apple’s Darwin Streaming Administration Server version 4.1.2 and QuickTime Streaming Server version 4.1.1 is susceptible to a directory listing vulnerability. This flaw allows remote attackers to exploit the servers and access arbitrary directories, potentially leading to unauthorized information disclosure. It highlights the importance of securing directory access and implementing appropriate access controls to protect sensitive information.

References

http://lists.apple.com/archives/security-announce/2003/Fe...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/6955

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/11403.php

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 7, 2003
Vulnerability Reserved
Jan 28, 2003