CVE-2003-0054
CVSS7.5
发布时间 :2003-03-07 00:00:00
修订时间 :2016-10-17 22:28:52
NMCOS    

[原文]Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when the log is viewed using a browser.


[CNNVD]Apple QuickTime/Darwin Streaming Server恶意端口请求代码注入漏洞(CNNVD-200303-033)

        Apple Darwin Streaming Administration Server 4.1.2以及QuickTime Streaming Server 4.1.1存在漏洞。远程攻击者可以借助位于rtsp DESCRIBE方法中的一个参数内部的到7070端口的请求执行某个代码,该漏洞会将其插入到一个日志文件中并在此日志使用浏览器读取时只执行代码。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:apple:quicktime_streaming_server:4.1.1Apple Quicktime Streaming Server 4.1.1
cpe:/a:apple:darwin_streaming_server:4.1.2Apple Darwin Streaming Server 4.1.2

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0054
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0054
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200303-033
(官方数据源) CNNVD

- 其它链接及资源

http://lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102.txt
(UNKNOWN)  CONFIRM  http://lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102.txt
http://marc.info/?l=bugtraq&m=104618904330226&w=2
(UNKNOWN)  BUGTRAQ  20030224 QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities
http://www.iss.net/security_center/static/11405.php
(VENDOR_ADVISORY)  XF  quicktime-darwin-describe-xss(11405)
http://www.securityfocus.com/bid/6960
(UNKNOWN)  BID  6960

- 漏洞信息

Apple QuickTime/Darwin Streaming Server恶意端口请求代码注入漏洞
高危 输入验证
2003-03-07 00:00:00 2005-05-13 00:00:00
远程  
        Apple Darwin Streaming Administration Server 4.1.2以及QuickTime Streaming Server 4.1.1存在漏洞。远程攻击者可以借助位于rtsp DESCRIBE方法中的一个参数内部的到7070端口的请求执行某个代码,该漏洞会将其插入到一个日志文件中并在此日志使用浏览器读取时只执行代码。

- 公告与补丁

        Apple has made fixes for this issue available:
        Apple Quicktime Streaming Server 4.1.1
        
        Apple Darwin Streaming Server 4.1.2
        

- 漏洞信息

9342
Apple Streaming Servers rtsp DESCRIBE Method Arbitrary Code Execution
Loss of Integrity

- 漏洞描述

Unknown or Incomplete

- 时间线

2003-02-23 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Apple QuickTime/Darwin Streaming Server Malicious Port Request Code Injection Vulnerability
Input Validation Error 6960
Yes No
2003-02-24 12:00:00 2009-07-11 08:06:00
The discovery of this vulnerability has been credited to Ollie Whitehouse from @stake.

- 受影响的程序版本

Apple Quicktime Streaming Server 4.1.1
Apple Mac OS X Server 10.2.3
Apple Mac OS X Server 10.2.2
Apple Mac OS X Server 10.2.1
Apple Mac OS X Server 10.2
Apple Darwin Streaming Server 4.1.2

- 漏洞讨论

It has been reported that a vulnerability exists in the handling of malicious requests for streaming media in the Apple QuickTime/Darwin Streaming Server. By placing a malicious request to the streaming port of the software, an attacker could potentially execute script code in the security context of an administrator viewing logs which may contain the attacker-supplied script.

- 漏洞利用

There is no exploit required.

- 解决方案

Apple has made fixes for this issue available:


Apple Mac OS X Server 10.2.3

Apple Quicktime Streaming Server 4.1.1

Apple Darwin Streaming Server 4.1.2

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站