Apple QuickTime RTSP Response Reason-Phrase Remote Buffer Overflow Vulnerability
Schweregrad: : Crítico
Identificador(es) CVE: : CVE-2008-0234
Data do informe: 21 julho 2015
Descrição
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1001287
Trend Micro Deep Security DPI Rule Name: 1001287 - Apple QuickTime Player Buffer Overflow
Software infectado e versão:
- apple quicktime 7.3.1.70
- apple quicktime 7.4