CVE-2003-0425

Description

Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... (triple dot) in an HTTP request.

Affected products

• Apple / darwin_streaming_server4.1.3 – 4.1.3

References

• MISChttp://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
• VENDOR_ADVISORYhttp://www.rapid7.com/advisories/R7-0015.html