Apple » Quicktime Streaming Server » 4.1.1 : Security Vulnerabilities, CVEs, CVSS score >= 6
Postfix server for Apple Mac OS X 10.3.6, when using CRAM-MD5, allows remote attackers to send mail without authentication by replaying authentication information.
Max CVSS
7.5
EPSS Score
1.14%
Published
2004-12-02
Updated
2017-07-11
Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file.
Max CVSS
7.5
EPSS Score
5.10%
Published
2004-12-02
Updated
2017-07-11
Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with ".ht" using alternate capitalization.
Max CVSS
7.5
EPSS Score
6.41%
Published
2004-12-03
Updated
2024-02-08
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when the log is viewed using a browser.
Max CVSS
7.5
EPSS Score
1.02%
Published
2003-03-07
Updated
2016-10-18
CVE-2003-0050
Public exploit
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.
Max CVSS
7.5
EPSS Score
65.93%
Published
2003-03-07
Updated
2016-10-18
5 vulnerabilities found