[Full-disclosure] Buffer-overflow in Quicktime Player 7.3.1.70
Marcello Barnaba (void)
vjt at openssl.it
Sat Jan 12 22:28:45 GMT 2008
On Jan 11, 2008, at 10:14 PM, Luigi Auriemma wrote:
> Now talking about you, Marcello, the problem you had is just with
> "your"
> same computer/network, probably you have a firewall or something
> else (a
> "condition" as you define it) that simply makes your ports to appear
> filtered/timedout and so Quicktime gives up.
Yeah, you are right. Protocol switching was disabled in my Quicktime
preferences. Sorry about that.. I should have checked before writing
inaccurate statements here.
By the way, even with "Transport setup" -> "Automatic", the software
doesn't crash nor loops after reading the HTTP payload, but I really
don't know why.. It merely sits there, saying "Swiching transports".
Attached a full pcap dump of the session and QuickTime.app's version
plist.
Have fun! :)
Marcello
--
pub 1024D/8D2787EF 723C 7CA3 3C19 2ACE 6E20 9CC1 9956 EB3C 8D27 87EF
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080112/dabd57a6/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dump.pcap.gz
Type: application/x-gzip
Size: 521 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080112/dabd57a6/attachment.bin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: version.plist
Type: application/octet-stream
Size: 510 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080112/dabd57a6/attachment.obj
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080112/dabd57a6/attachment-0001.html
Full-Disclosure is hosted and sponsored by Secunia.