Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
QuickTime Streaming Server in MacOS X 10.2.8 and 10.3.2 allows remote attackers to cause a denial of service (crash) via DESCRIBE requests with long User-Agent fields, which causes an Assert error to be triggered in the BufferIsFull function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple QuickTime/Darwin Streaming Server DESCRIBE请求远程拒绝服务漏洞
Vulnerability Description
Apple QuickTime/Darwin是流行的流服务器。 Apple QuickTime/Darwin在解析DESCRIBE请求时存在问题,远程攻击者可以利用这个漏洞对服务程序进行拒绝服务攻击。 问题发生在解析包含特殊构建的User-Agent字段数据的DESCRIBE请求。当攻击者提交的DESCRIBE请求包含的User-Agent字段超过255字符,可导致在CommonUtilitiesLib/StringFormatter.h 97行发生Assert错误: virtual void Buffe
CVSS Information
N/A
Vulnerability Type
N/A