CVEブラウザに戻る

CVE-2003-0426

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0020%

EPSS Percentile19.15th

Published2003年8月27日

Last Modified2026年4月16日

Vulnerability Description

The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator.

Affected Platforms (CPE)

📦

Apple

Darwin Streaming Server

= 4.1.3

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html

🔗 http://www.rapid7.com/advisories/R7-0015.html

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html

🔗 http://www.rapid7.com/advisories/R7-0015.html

関連する脆弱性情報

CVE-2003-050210.0

Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot...

CVE-2007-074810.0

Heap-based buffer overflow in Apple Darwin Streaming Proxy, when using Darwin Streaming Server before 5.5.5, allows remote attacke...

CVE-2003-042110.0

Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via an MS-DOS...

CVE-2007-074910.0

Multiple stack-based buffer overflows in the is_command function in proxy.c in Apple Darwin Streaming Proxy, when using Darwin Str...