SecurityTeam US - Darwin Streaming Server "DESCRIBE" Request Denial of Service


	Contribute : Advanced Search : Web Resources : Polls : File Repository

Poll
What would you like to see on SecurityTeamUS? More News Product Reviews HowTo's Custom RPM/Packages/Tools Other (Please leave comment) Results 96 votes \| 0 comments

Topics
Home Apache Apple Application Software Cisco Systems Database Servers Internet Explorer Linux Macromedia Microsoft Mozilla/Firefox Phishing/ID Theft Real Networks Security News Sun Microsystems Web Appliances/Devices Web Scripts Wi-Fi

Virus Alerts
17 Apr 2011 Troj/Mdrop-DKE 17 Apr 2011 Troj/Sasfis-O 17 Apr 2011 Troj/Keygen-FU 17 Apr 2011 Troj/Zbot-AOY 17 Apr 2011 Troj/Zbot-AOW 17 Apr 2011 W32/Womble-E 17 Apr 2011 Troj/VB-FGD 17 Apr 2011 Troj/FakeAV-DFF 17 Apr 2011 Troj/SWFLdr-W 17 Apr 2011 W32/RorpiaMem-A

Events
There are no upcoming events

Welcome to SecurityTeam US
Monday, February 06 2012 @ 12:18 PM EST

Darwin Streaming Server "DESCRIBE" Request Denial of Service

Wednesday, December 08 2004 @ 10:36 AM EST

A vulnerability has been reported in Darwin Streaming Server, which can be exploited by malicious people to cause a DoS (Denial of Service).

Remote exploitation of an input validation vulnerability in Apple Computer Inc.'s Darwin Streaming Server allows attackers to cause a denial of service condition. The vulnerability specifically occurs due to insufficient sanity checking on arguments to DESCRIBE requests. A remote attacker can send a request for a location containing a null byte to cause a denial of service condition resulting in the following backtrace:

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 1026 (LWP 9648)]
0x4207ac9e in chunk_free () from /lib/i686/libc.so.6
(gdb) bt
#0 0x4207ac9e in chunk_free () from /lib/i686/libc.so.6
#1 0x4207ac24 in free () from /lib/i686/libc.so.6
#2 0x08096406 in FindOrCreateSession (inPath=0x408caf3c,
   inParams=0x81746f0, inData=0x0, isPush=0, foundSessionPtr=0x0) at
   APIModules/QTSSReflectorModule/QTSSReflectorModule.cpp:1262

The vulnerability has been reported in version 5.0.1. Other versions may also be affected.

SOFTWARE:
Darwin Streaming Server 4.x
Darwin Streaming Server 5.x

SOLUTION:
We are not currently aware of an updated version or patches fixing the vulnerability.

Restrict access to the server.

PROVIDED AND/OR DISCOVERED BY:
Discovered by anonymous person and reported via iDEFENSE.

ORIGINAL ADVISORY:
iDEFENSE:
http://www.idefense.com/application/poi/display?id=159&type=vulnerabilities

What's Related
http://www.idefense.com... More from Apple

Story Options
Mail Story to a Friend Printable Story Format

Darwin Streaming Server "DESCRIBE" Request Denial of Service | 0 comments | Create New Account

The following comments are owned by whomever posted them. This site is not responsible for what they say.

Dedicated Servers
Created this page in 0.15 seconds