Back to search
CVE-2008-0234
Published: Jan 11, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
4885
exploit
x_refsource_EXPLOIT-DB
quicktime-rtsp-responses-bo(39601)
vdb-entry
x_refsource_XF
20080111 Re: Re: Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
20080110 Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
ADV-2008-2064
vdb-entry
x_refsource_VUPEN
APPLE-SA-2008-02-06
vendor-advisory
x_refsource_APPLE
4906
exploit
x_refsource_EXPLOIT-DB
31034
third-party-advisory
x_refsource_SECUNIA
20080112 Re: Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
20080111 Re: Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
APPLE-SA-2008-07-10
vendor-advisory
x_refsource_APPLE
20080110 Re: Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
27225
vdb-entry
x_refsource_BID
VU#112179
third-party-advisory
x_refsource_CERT-VN
20080112 Re: Re: Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
20080114 Re: [Full-disclosure] Buffer-overflow in Quicktime Player 7.3.1.70
mailing-list
x_refsource_BUGTRAQ
ADV-2008-0107
vdb-entry
x_refsource_VUPEN
3537
third-party-advisory
x_refsource_SREASON
1019178
vdb-entry
x_refsource_SECTRACK
28423
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now