Stack-based Buffer Overflow in Apple Darwin Streaming Proxy
CVE-2007-0749

Currently unrated

Key Information:

Vendor: Apple
Status: Darwin Streaming Server
Vendor: CVE Published:; 13 May 2007

Summary

Multiple stack-based buffer overflows exist within the is_command function of the proxy.c file in Apple Darwin Streaming Proxy. These vulnerabilities occur when processing RTSP requests with excessively long 'cmd' or 'server' values, enabling remote attackers to potentially execute arbitrary code. This can lead to unauthorized actions on vulnerable systems, significantly compromising their integrity and security.

References

http://www.vupen.com/english/advisories/2007/1770

vdb-entryx_refsource_VUPEN

http://lists.apple.com/archives/Security-announce/2007/Ma...

vendor-advisoryx_refsource_APPLE

http://www.securityfocus.com/bid/23918

vdb-entryx_refsource_BID

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 13, 2007
Vulnerability Reserved
Feb 5, 2007