Title: Apple QuickTime RTSP Content-Type Header Processing Overflow
Nov 24, 2007
Dec 13, 2007
A buffer overflow exists in Quicktime. Quicktime fails to validate RTSP stream Content-Type headers resulting in a stack overflow. With a specially crafted RTSP stream, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.
Local / Remote,
Loss of Integrity
Upgrade to version 7.3.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.