Apple QuickTime RTSP Response Reason-Phrase Remote Buffer Overflow Vulnerability
Gravità: : Critico
Identificatori CVE: CVE-2008-0234
Data notifica: 21 luglio 2015
Descrizione
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
Informazioni esposizione:
Apply associated Trend Micro DPI Rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1001287
Trend Micro Deep Security DPI Rule Name: 1001287 - Apple QuickTime Player Buffer Overflow
Software e versione interessati:
- apple quicktime 7.3.1.70
- apple quicktime 7.4