RTSP: Apple QuickTime RTSP Content-Type Overflow
This signature detects attempts to exploit a known vulnerability in Apple QuickTime. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the application.
Extended Description
Apple QuickTime is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized stack-based memory buffer. This issue occurs when handling specially crafted RTSP Response headers. Attackers can leverage this issue to execute arbitrary machine code in the context of the user running the affected application. Successful exploits will compromise the application and possibly the underlying computer. Failed attacks will likely cause denial-of-service conditions. QuickTime 7.3 is vulnerable to this issue; other versions may also be affected. UPDATE (December 4, 2007): Attackers are exploiting this issue through the Second Life Viewer to steal Linden dollars from unsuspecting victims.
Affected Products
Apple quicktime_player
Short Name
RTSP:OVERFLOW:RTSP-CONTENT
Severity
Major
Recommended
False
Recommended Action
Drop
Category
RTSP
Keywords
Apple CVE-2007-6166 Content-Type Overflow QuickTime RTSP bid:26549
Release Date
02/25/2010
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3576
False Positive
Unknown
Vendors
Linden_research,_inc.
Apple
Gentoo
CVSS Score
9.3