What is CVE-2003-0050?

CVE-2003-0050 is a vulnerability in N/a. Published 2004-09-01.

Is CVE-2003-0050 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-0050

parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.

EPSS: 0.879 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

lists.apple.com/archives/security-announce/2003/Feb/25/applesa20030225macosx102… (x_refsource_CONFIRM)
quicktime-darwin-command-execution(11401) (vdb-entry, x_refsource_XF)
6954 (vdb-entry, x_refsource_BID)
20030224 QuickTime/Darwin Streaming Administration Server Multiple vulnerabilities (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2003-0050?: CVE-2003-0050 is a vulnerability in N/a. Published 2004-09-01.
Is CVE-2003-0050 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.