SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#460350

Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests

Overview

Apple Quicktime/Darwin Streaming Server fails to properly parse DESCRIBE requests containing overly large User-Agent fields. This could allow an unauthenticated, remote attacker to cause a denial-of-service condition.

I. Description

Apple's QuickTime and Darwin Streaming Server is software which provides integrated distribution of various forms of digital content. Such content can be delivered over a network using Real-Time Transport Protocol (RTP) and Real-Time Streaming Protocol (RTSP).

The RTSP provides a DESCRIBE method which according to RFC 2326 "retrieves the description of a presentation or media object identified by the request URL from a server. It may use the Accept header to specify the description formats that the client understands. The server responds with a description of the requested resource. The DESCRIBE reply-response pair constitutes the media initialization phase of RTSP."

There is a vulnerability in the way the Quicktime/Darwin Streaming Server parses DESCRIBE requests containing specially crafted User-Agent fields. An attacker could exploit this vulnerability by sending a DESCRIBE request containing an overly large User-Agent field.

II. Impact

An unauthenticated, remote attacker could prevent legitimate users from accessing the streamed content.

III. Solution

Apply Patch

Apple has released a patch to address this vulnerability. For further details, please see the Apple Security Advisory (Security Update 2004-02-23).

Systems Affected

VendorStatusDate NotifiedDate Updated
Apple Computer Inc.Vulnerable25-Feb-2004

References


http://www.idefense.com/application/poi/display?id=75
http://www.apple.com/support/security/security_updates.html
http://www.ietf.org/rfc/rfc2326.txt

Credit

This vulnerability was reported by iDefense.

This document was written by Damon Morda.

Other Information

Date Public:2004-02-24
Date First Published:2004-02-25
Date Last Updated:2004-03-15
CERT Advisory: 
CVE-ID(s):CAN-2004-0169
NVD-ID(s):CAN-2004-0169
US-CERT Technical Alerts: 
Metric:1.68
Document Revision:12

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2004 Carnegie Mellon University
Disclaimers and copyright information
Get Adobe Reader Get Adobe Reader