Solution
To fix this vulnerability, you must install QTS 4.2.6 build 20170905 or QTS 4.3.3.0262 build 20170727, and install one of the following Media Streaming Add-on updates.

QTS 4.3.x: Media Streaming Add-On 430.1.4.1 or later

QTS 4.2.x: Media Streaming Add-On 421.1.1.1 or later

関連
http://d.hatena.ne.jp/noushibou/20170907/1504774206

脳脂肪のパクリメモ

Security Advisory for Command Injection in QTS and in Media Streaming Add-On