Researcher spots year’s first QuickTime bug

news, events, reviews

Home

Researcher spots year’s first QuickTime bug

Posted on 2008 under QuickTime |

17 Jan

The problem, said Auriemma, is when QuickTime tries to open a Real-Time Streaming Protocol (RTSP) connection and the server has closed TCP Port 544. The player then automatically tries to open an HTTP connection on Port 80. An attacker can exploit the weakness by duping a user into visiting a malicious site that includes an rtsp:// link; when QuickTime fails to connect, it would automatically seek out an HTTP server on the same system.

The attacker, of course, would have made sure that there was an HTTP server there and would have populated it with the exploit.

New QuickTime bugs crawl into the open (Feb 14, 2008)
DRM in latest QuickTime cripples Adobe video editing code (Jan 25, 2008)
QuickTime bug opens XP, Vista to attack (Dec 29, 2007)
IPhone Could Give Apple Inroad to Enterprise Sales (Dec 27, 2007)
QuickTime Fixes RTSP Vulnerability (Dec 19, 2007)

You must be logged in to post a comment.

About Us

Community of those who are fond of Apple's ideas, design and all that incredible things they do. If you like PC's - that's your choice. We proudly consider Apple, with it's iPhone, iPod & sure - Apple Mac Air - is the best!

Apple

Researcher spots year’s first QuickTime bug

Related Posts

Leave a comment

See Also

Categories

Archives

Recent Comments

Recent Post

About Us

Meta