Darwin RTSP Server < 5.5.5 Multiple Overflows

high Nessus Network Monitor Plugin ID 3989

Synopsis

The remote host is vulnerable to multiple buffer overflows.

Description

The remote host is running the Darwin RTSP media server. This version of Darwin is vulnerable to multiple flaws in the way that it processes user-supplied data. An attacker exploiting these flaws would only need to be able to send RTSP requests to the Darwin server. Successful exploitation would result in the attacker executing arbitrary code with the privileges of the Darwin server process.

Solution

Upgrade to version 5.5.5 or higher.

See Also

http://docs.info.apple.com/article.html?artnum=305495

Plugin Details

Severity: High

ID: 3989

Family: Generic

Published: 5/11/2007

Updated: 3/6/2019

Nessus ID: 25214

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 6.1

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:apple:darwin_streaming_server

Reference Information

CVE: CVE-2007-0748, CVE-2007-0749

BID: 23918