Focus on Apple
New QuickTime (7.2, 7.3) RTSP Vulnerability Nov 25 2007 12:23PM
Sûnnet Beskerming (info beskerming com) (1 replies)
Hi List,

I know it's slightly poor form to point at your own site for
reference material, but there isn't much else out there at the moment
about the new(-ish looking) RTSP vulnerability in Quicktime 7.2 and
7.3 (at least) on Windows, complete with exploits.

Nice timing of the hackers who found it to release over the
Thanksgiving / Black Friday extended weekend.

** Note that RTSP may already be disabled in the latest versions
(according to advice received from US-CERT) - mine's still
deselected from when I manually deselected with the MOMB
vulnerability at the start of the year.

http://www.beskerming.com/commentary/2007/11/25/306/
QuickTime_flaw_Could_be_next_Menace_for_Users
http://www.beskerming.com/security/2007/11/25/74/QuickTime_-
_Remote_hacker_automatic_control
http://www.kb.cert.org/vuls/id/659761
http://milw0rm.com/

Carl

Sûnnet Beskerming Pty. Ltd.
Adelaide, Australia
http://www.beskerming.com

[ reply ]
RE: New QuickTime (7.2, 7.3) RTSP Vulnerability Nov 25 2007 07:49PM
Todd Woodward (todd_woodward symantec com)


 

Privacy Statement
Copyright 2010, SecurityFocus