Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 APP:QT-SERVER:QT-ARG-DOS

Severity

 Medium

Recommended

 No

Category

 APP

Release Date

 2004/08/25

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+

APP: Darwin QuickTime Streaming Server Malformed Argument Denial of Service


This signature detects URL requests /view_broadcast.cgi and /parse_xml.cgi sent to a QuickTime Streaming Server. Darwin QuickTime Streaming Server v4.1.3 and earlier versions for all platforms (MacOS X, Linux, Windows) are vulnerable. Attackers can send URL requests that contain malformed arguments to the scripts /view_broadcast.cgi and /parse_xml.cgi, forcing the Streaming Server to reveal information or deny service to legitimate clients.

Extended Description

These vulnerabilities allow a remote attacker to cause a denial of service, or to obtain the contents of the files on the server.

References

  • CVE: CVE-2003-0421
  • URL: http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0040.html
  • URL: http://developer.apple.com/darwin/projects/streaming/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy & Policy
Legal Notices
Copyright© 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out