MacSecure.com
A Mac Security Blog

Quicktime Vulnerability - RTSP Headers

Symantec is reporting details of a vulnerability in Quicktime 7.2 and 7.3 that is currently unpatched by Apple.   Right now the exploits in the wild for this vulnerability appear to only be loading Windows executables, but the suggestion is that OS X systems could potentially be vulnerable as well.  Recommended steps until there is a patch include blocking outbound TCP traffic on port 554, or even blocking certain IP blocks that the Windows exploit is known to be sending data back to.    The CERT page for this vulnerability is here with tons of details.  As a note for anyone running OS X in a corporate environment — SourceFire’s SEU 118 has the Snort signatures for this vulnerability.

Bookmark this page at: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • StumbleUpon
  • Technorati

One Response to “Quicktime Vulnerability - RTSP Headers”

  1. […] here.   Just a quick note:  if you read the Symantec advisory regarding the Quicktime RTSP Header […]

    MacSecure.com » Firewall Rules for Quicktime RTSP Vulnerability - December 6th, 2007 at 12:20 am

Leave a Reply

You must be logged in to post a comment.