parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Darwin_streaming_server | Apple | 4.1.2 (including) | 4.1.2 (including) |
Quicktime_streaming_server | Apple | 4.1.1 (including) | 4.1.1 (including) |