Unrated severityNVD Advisory· Published Mar 7, 2003· Updated Jun 16, 2026
CVE-2003-0054
CVE-2003-0054
Description
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a log file and executed when the log is viewed using a browser.
Affected products
4- cpe:2.3:a:apple:darwin_streaming_server:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:apple:quicktime_streaming_server:4.1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:quicktime_streaming_server:4.1.1:*:*:*:*:*:*:*
- (no CPE)range: =4.1.1
- Range: =4.1.2
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.