- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 22312
- Проверка EDB
-
- Пройдено
- Автор
- JOE TESTA
- Тип уязвимости
- REMOTE
- Платформа
- CGI
- CVE
- cve-2003-1414
- Дата публикации
- 2003-02-28
Код:
source: https://www.securityfocus.com/bid/6990/info
A file retrieval vulnerability has been reported for QuickTime/Darwin Streaming Server. The vulnerability exists due to insufficient sanitization of some parameters given to the parse_xml.cgi script. Information obtained in this manner may be used by an attacker to launch more organinzed attacks against a vulnerable system.
This vulnerability was tested on SS for Microsoft Windows systems.
http://localhost:1220/parse_xml.cgi?filename=.../qtusers- Источник
- www.exploit-db.com
