toggle

AAPL Stock: 105.22 ( + 0.39 )

Printed from http://www.macnn.com

Apple fixes flaws in Darwin Streaming Server

updated 06:25 pm EDT, Thu May 10, 2007

Apple DSS 5.5.5 update

Apple has released a security update to its Darwin Streaming Server, its open source project. DSS 5.5.5 fixes two security flaws, including one where a remote attacker may be able to cause an unexpected application termination or arbitrary code execution. The company said a stack buffer overflow exists in the Darwin Streaming Proxy and that by sending maliciously-crafted RTSP requests, a remote attacker can trigger the overflow, which may lead to an unexpected application termination or arbitrary code execution.

The update addresses the issue by performing additional validation of RTSP requests. The update also fixes a flaw where a remote attacker may be able to cause an unexpected application termination or arbitrary code execution due to a heap buffer overflow in the Darwin Streaming Proxy.

The DSS 5.5.5 update is available for Mac OS X, Windows, and Linux version of the software along with the updated source code.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Sound Blaster Roar Bluetooth speaker

There could very well be a new king of the hill for Bluetooth speakers, with Sound Blaster's recent entry into the marketplace. Bring ...

Kenu Airframe Plus

Simple, stylish and effective, the Kenu Airframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this ...

Plantronics Rig Surround 7.1 headset

Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

toggle

Most Commented