Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Quicktime_streaming_server
(Apple)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 16 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2004-12-03 | CVE-2004-1083 | Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | 7.5 | ||
| 2005-01-10 | CVE-2004-1123 | Darwin Streaming Server 5.0.1, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via a DESCRIBE request with a location that contains a null byte. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1089 | Unknown vulnerability in Apple Mac OS X 10.3.6 server, when using Kerberos authentication and Cyrus IMAP allows local users to access mailboxes of other users. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1088 | Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1087 | Terminal for Apple Mac OS X 10.3.6 may indicate that "Secure Keyboard Entry" is enabled even when it is not, which could result in a false sense of security for the user. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1086 | Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1085 | Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1084 | Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2004-12-02 | CVE-2004-1081 | The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other applications within the same window session. | Darwin_streaming_server, Mac_os_x, Mac_os_x_server, Quicktime_streaming_server | N/A | ||
| 2003-12-31 | CVE-2003-1414 | Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot) in the filename parameter. | Darwin_streaming_server, Quicktime_streaming_server | N/A |