Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Quicktime/Darwin Remote Admin Exploit
Information
Severity
Severity
High
Family
Family
Gain a shell remotely
CVSSv2 Base
CVSSv2 Base
7.5
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Solution Type
Solution Type
Workaround
Created
Created
18 years ago
Modified
Modified
4 years ago
Summary
Cross site scripting, buffer overflow and remote command execution on QuickTime/Darwin Streaming Administration Server.
Insight
Insight
This is due to parsing problems with per script: parse_xml.cgi. The worst of these vulnerabilities allows for remote command execution usually as root or administrator. These servers are installed by default on port 1220.
Solution
Solution
Obtain a patch or new software from Apple or block this port (TCP 1220) from internet access.