Apple QuickTime RTSP Response Reason-Phrase Remote Buffer Overflow Vulnerability
Gravedad: Crítico
Identificadores de CVE : CVE-2008-0234
Fecha recomendada: 21 de julio de 2015
Descripción
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1001287
Trend Micro Deep Security DPI Rule Name: 1001287 - Apple QuickTime Player Buffer Overflow
Software y versión afectados
- apple quicktime 7.3.1.70
- apple quicktime 7.4