Apple Fixes Critical Holes
Apple has updated its open-source Darwin Streaming Server to fix two critical security holes that can allow a remote attacker to hijack the server.
An attacker can trigger the overflow by sending specially crafted RTSP requests, after which he or she can remotely execute code on the victimized system. The update fixes the overflow vulnerability with additional validation of such requests.
Security Watch - Apple - Apple Fixes Critical Holes in Darwin Streaming Server
Apple has updated its open-source Darwin Streaming Server to fix two critical security holes that can allow a remote attacker to hijack the server.
An attacker can trigger the overflow by sending specially crafted RTSP requests, after which he or she can remotely execute code on the victimized system. The update fixes the overflow vulnerability with additional validation of such requests.
Security Watch - Apple - Apple Fixes Critical Holes in Darwin Streaming Server