Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple QuickTime RTSP连接状态显示远程溢出漏洞
Vulnerability Description
Apple QuickTime是美国苹果(Apple)公司开发的一款多媒体播放软件。该软件能够处理数字视频、媒体段落等多种资源。 QuickTime在填充包含有连接状态信息的LCD类屏幕时存在缓冲区溢出漏洞,远程恶意服务器可能利用此漏洞控制用户系统。 如果用户跟随了rtsp://连接且服务器的554端口关闭,Quicktime就会自动更改传输方式,在80端口上尝试HTTP协议,LCD类屏幕会显示服务器的404错误消息。
CVSS Information
N/A
Vulnerability Type
N/A