Denial of Service Vulnerability in Darwin Streaming Server by Apple
CVE-2004-1123

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime Streaming Server; Darwin Streaming Server
Vendor: CVE Published:; 10 January 2005

What is CVE-2004-1123?

The vulnerability in Darwin Streaming Server allows remote attackers to exploit the server by sending a DESCRIBE request containing a null byte in the location. This can lead to a crash of the server, causing a denial of service for legitimate users. The issue is present in version 5.0.1 and potentially affects earlier versions, making it crucial for operators to apply the necessary security measures.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18357

vdb-entryx_refsource_XF

http://www.idefense.com/application/poi/display?id=159&ty...

third-party-advisoryx_refsource_IDEFENSE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Dec 1, 2004