exploitDog

CVE-2003-0424

Опубликовано: 27 авг. 2003

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the script, e.g. view_broadcast.cgi.

Ссылки

http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
Exploit
Vendor Advisory
http://www.rapid7.com/advisories/R7-0015.html
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
Exploit
Vendor Advisory
http://www.rapid7.com/advisories/R7-0015.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apple:darwin_streaming_server:4.1.3:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00587

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-9xmq-7rwm-gr8h

github

больше 3 лет назад

Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the script, e.g. view_broadcast.cgi.

EPSS

Процентиль: 68%

0.00587

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other