Apple QuickTime RTSP Response Reason-Phrase Remote Buffer Overflow Vulnerability
2015年7月21日
危険度: : 緊急
CVE識別番号: CVE-2008-0234
概要
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
トレンドマイクロの対策
Apply associated Trend Micro DPI Rules.
対応方法
Trend Micro Deep Security DPI Rule Number: 1001287
Trend Micro Deep Security DPI Rule Name: 1001287 - Apple QuickTime Player Buffer Overflow
影響を受けるソフトウェア
- apple quicktime 7.3.1.70
- apple quicktime 7.4