ID
VAR-200303-0098
CVE
CVE-2003-0051
TITLE
Apple Quicktime/Darwin Streaming server parse_xml.cgi Remote path leak vulnerability
Trust: 0.6
DESCRIPTION
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NULL file parameter. Under some circumstances, it may be possible to reveal the physical path that the vulnerable server is installed too. Access to this information may aid in launching more organized attacks against system resources. This vulnerability was originally described in BID 6932 "Multiple Remote QuickTime/Darwin Streaming Administration Server Vulnerabilities". It is now being assigned a separate BID. By default, these services listen on port 1220/TCP with root user privileges. If an attacker passes NULL as the file name parameter and submits it to the parse_xml.cgi script, the script will return information including the physical path where the service program is installed, and the attacker can use this information to further attack the system
Trust: 1.26
AFFECTED PRODUCTS
| vendor: | apple | model: | darwin streaming server | scope: | eq | version: | 4.1.2 | Trust: 1.9 |
| vendor: | apple | model: | quicktime streaming server | scope: | eq | version: | 4.1.1 | Trust: 1.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-Other | Trust: 1.0 |
THREAT TYPE
remote
Trust: 0.6
TYPE
input validation
Trust: 0.6
EXTERNAL IDS
| db: | BID | id: | 6956 | Trust: 2.0 |
| db: | NVD | id: | CVE-2003-0051 | Trust: 2.0 |
| db: | BUGTRAQ | id: | 20030224 QUICKTIME/DARWIN STREAMING ADMINISTRATION SERVER MULTIPLE VULNERABILITIES | Trust: 0.6 |
| db: | XF | id: | 11402 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-200303-036 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-6881 | Trust: 0.1 |
REFERENCES
| url: | http://www.securityfocus.com/bid/6956 | Trust: 1.7 |
| url: | http://lists.apple.com/archives/security-announce/2003/feb/25/applesa20030225macosx102.txt | Trust: 1.7 |
| url: | http://www.iss.net/security_center/static/11402.php | Trust: 1.7 |
| url: | http://marc.info/?l=bugtraq&m=104618904330226&w=2 | Trust: 1.1 |
| url: | http://marc.theaimsgroup.com/?l=bugtraq&m=104618904330226&w=2 | Trust: 0.6 |
| url: | http://www.info.apple.com/usen/security/security_updates.html | Trust: 0.3 |
| url: | - | Trust: 0.1 |
CREDITS
Dave G.※ daveg@atstake.com※Ollie Whitehouse※ ollie@atstake.com
Trust: 0.6
SOURCES
| db: | VULHUB | id: | VHN-6881 |
| db: | BID | id: | 6956 |
| db: | CNNVD | id: | CNNVD-200303-036 |
| db: | NVD | id: | CVE-2003-0051 |
LAST UPDATE DATE
2024-08-14T12:05:04.235000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-6881 | date: | 2016-10-18T00:00:00 |
| db: | BID | id: | 6956 | date: | 2009-07-11T20:06:00 |
| db: | CNNVD | id: | CNNVD-200303-036 | date: | 2005-05-13T00:00:00 |
| db: | NVD | id: | CVE-2003-0051 | date: | 2016-10-18T02:28:48.733 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-6881 | date: | 2003-03-07T00:00:00 |
| db: | BID | id: | 6956 | date: | 2003-02-24T00:00:00 |
| db: | CNNVD | id: | CNNVD-200303-036 | date: | 2003-02-24T00:00:00 |
| db: | NVD | id: | CVE-2003-0051 | date: | 2003-03-07T05:00:00 |