Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, which bypass Apache file handles.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Darwin_streaming_server | Apple | 4.1.3 (including) | 4.1.3 (including) |
Darwin_streaming_server | Apple | 5.0.1 (including) | 5.0.1 (including) |
Quicktime_streaming_server | Apple | 4.1.1 (including) | 4.1.1 (including) |