CVE Vulnerabilities

CVE-2004-1083

Published: Dec 03, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Apache for Apple Mac OS X 10.2.8 and 10.3.6 restricts access to files in a case sensitive manner, but the Apple HFS+ filesystem accesses files in a case insensitive manner, which allows remote attackers to read .DS_Store files and files beginning with .ht using alternate capitalization.

Affected Software

Name Vendor Start Version End Version
Darwin_streaming_server Apple 4.1.3 4.1.3
Darwin_streaming_server Apple 5.0.1 5.0.1
Quicktime_streaming_server Apple 4.1.1 4.1.1

References