Quicktime/Darwin Remote Admin Exploit

Published: 2005-11-03 13:08:04
CVE Author: NIST National Vulnerability Database (NVD)

CVSS Base Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Recommendations:
Obtain a patch or new software from Apple or block this port (TCP 1220) from internet access.

Summary:
Cross site scripting, buffer overflow and remote command execution on QuickTime/Darwin Streaming Administration Server.

Technical Details:
This is due to parsing problems with per script: parse_xml.cgi. The worst of these vulnerabilities allows for remote command execution usually as root or administrator. These servers are installed by default on port 1220.

Solution Type:
Workaround

Detection Type:
Remote Banner Unreliable

NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)

https://nvd.nist.gov/vuln/detail/CVE-2003-0050
https://nvd.nist.gov/vuln/detail/CVE-2003-0051
https://nvd.nist.gov/vuln/detail/CVE-2003-0052
https://nvd.nist.gov/vuln/detail/CVE-2003-0053
https://nvd.nist.gov/vuln/detail/CVE-2003-0054
https://nvd.nist.gov/vuln/detail/CVE-2003-0055

SecurityFocus Bugtraq ID:

https://www.securityfocus.com/bid/6954
https://www.securityfocus.com/bid/6955
https://www.securityfocus.com/bid/6956
https://www.securityfocus.com/bid/6957
https://www.securityfocus.com/bid/6958
https://www.securityfocus.com/bid/6960
https://www.securityfocus.com/bid/6990

References:

http://www.atstake.com/research/advisories/2003/a022403-1.txt

Search
Severity
High
CVSS Score
7.5

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities. It is free and always will be.