parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Darwin_streaming_server |
Apple |
4.1.3 |
4.1.3 |
References