Apple QuickTime RTSP Response "Reason-Phrase" Buffer Overflow
A vulnerability has been identified in Apple QuickTime, which could be exploited by remote attackers to cause a denial of service or take complete control of an affected system. This issue is caused by a buffer overflow error when processing RTSP response messages and displaing the "Reason-Phrase", which could be exploited by atatckers to crash a vulnerable application or execute arbitrary code by tricking a user into connecting to a malicious server or visiting a specially crafted web page.
System / Technologies affected
- Apple QuickTime version 18.104.22.168 and prior
Do not browse untrusted websites, open malicious .QTL files, or follow untrusted links.
- No CVE information is available