NuytsTech Security

CVE-2003-1414

by ·

Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a … (triple dot) in the filename parameter.

Date published : 2007-10-20

http://www.securityfocus.com/bid/6990

http://www.securityfocus.com/archive/1/313517

Tags: