Darwin Streaming Server < 5.5.5 Multiple Remote Overflow Vulnerabilities

This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.


Synopsis :

The remote RTSP server suffers from a multiple vulnerabilities.

Description :

The remote host is running Darwin Streaming Server, a media streaming
server.

According to its banner, the version of the Darwin Streaming Server
installed on the remote host is affected by multiple buffer overflow
vulnerabilities. An unauthenticated, remote attacker may be able to
leverage these issues using specially crafted RTSP requests to crash
the affected service or to execute arbitrary code subject to the
privileges of the user id under which it runs, generally root.

See also :

http://www.nessus.org/u?594ee8f3
http://docs.info.apple.com/article.html?artnum=305495

Solution :

Upgrade to Darwin Streaming Server 5.5.5 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Gain a shell remotely

Nessus Plugin ID: 25214 (darwin_streaming_server_555.nasl)

Bugtraq ID: 23918

CVE ID: CVE-2007-0748
CVE-2007-0749