|| Hotline : 800 2378 ||  To contact CERT-MU send e-mail on --> info[at]cert-mu.gov.mu ||  To report incident e-mail on --> incident[at]cert-mu.gov.mu || To report Vulnerabilities send e-mail on --> Vulnerability[at]cert-mu.gov.mu ||
    Constituency
    Authority
    Vol. 2, Feb 2012
    Vol. 1, Oct 2011
    World CERTs
    Email Abuse
 
 
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie Mellon University
 
 
 
 
 
 
 
 
 
 
 
 


   
 

CERT-MU AD-2008-17

Apple QuickTime Multiple Vulnerabilities

Original issue date: 12 September, 2008

Overview

Multiple vulnerabilities have been reported in Apple QuickTime media player which could be exploited by remote attackers to execute an arbitrary code or cause denial of service.

Description

QuickTime is a multimedia framework developed by Apple Inc. capable of handling various formats of digital video, media clips, sound, text, animation, music, and several types of interactive panoramic images.

1. Apple QuickTime PICT image Integer Overflow Vulnerability

This vulnerability is caused due to an integer overflow error while handling PICT images by Apple QuickTime. This can be exploited by remote attacker by opening a specially crafted PICT image which triggers integer overflow error causes unexpected application termination or execution of an arbitrary code.

2. Apple QuickTime Unspecified Memory Access Vulnerability

This vulnerability is caused when an unspecified third party Indeo v5 codec is used with Apple QuickTime accesses uninitialized memory. A remote attacker can trigger this issue by opening a specially crafted movie to causes unexpected application termination or execution of an arbitrary code.

3. Apple QuickTime Heap-based buffer overflow vulnerability

This vulnerability is caused due to a heap-based buffer overflow exists in QuickTime's in handling of panorama atoms in QTVR (QuickTime Virtual Reality) movie files. A remote attacker can trigger this issue by viewing a specially crafted QTVR movie file which causes unexpected application termination or arbitrary code execution.

4. Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability

This vulnerability is caused due to a heap-based buffer overflow exists in QuickTime's in handling of panorama atoms in QTVR (QuickTime Virtual Reality) movie files. A remote attacker can trigger this issue by viewing a specially crafted QTVR movie file which causes unexpected application termination or arbitrary code execution.

5. Apple QuickTime STSZ Atom Parsing Heap Corruption Vulnerability

This vulnerability is caused due to an error in the CallComponentFunctionWithStorage() function when parsing STSZ atoms in movie files. This vulnerability can be exploited by remote attacker by opening a specially crafted movie file containing a overly large entry in sample_size_table to cause memory corruption and executes an arbitrary code.

6. Apple QuickTime MDAT Frame Parsing Memory Corruption Vulnerability

This vulnerability is caused due to errors in handling MDAT atoms in MP4 video files within QuickTimeH264.qtx, MDAT atoms in mov video files within QuickTimeH264.scalar, and AVC1 atoms in an unknown media type within an unspecified component. A remote attacker could exploit this vulnerability by opening a maliciously crafted H.264 encoded movie file to cause heap memory corruption. Successful exploitation of this vulnerability a remote attacker can execute arbitrary code or causes denial of service.

7. Apple QuickTime PICT image "invalid pointer issue" Vulnerability

This vulnerability caused due to an an invalid pointer error while handling PICT images in Apple's QuickTime. This can be exploited by remote attacker by opening a specially crafted PICT image causes unexpected application termination or execution of an arbitrary code.

8. Apple QuickTime PICT image an out-of-bounds memory read vulnerability

This vulnerability caused due to an an out-of-bounds memory read error while handling PICT images in Apple's QuickTime. This can be exploited by remote attacker by opening a specially crafted PICT image causes unexpected application termination.

9. Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability

This vulnerability is caused due to a Stack-based buffer overflow error in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime. This can be exploited by remote attacker by opening a specially crafted movie file which triggers stack overflow error and causes unexpected application termination or execution of an arbitrary code.

Affected systems  

• Apple QuickTime 7.x

Impact

Severity Rating: High

Solution

Upgrade to version 7.5.5
http://www.apple.com/support/downloads/

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Vendor Information

Support
http://support.apple.com/kb/HT3027

CVE-Name

CVE-2008-3614
CVE-2008-3615
CVE-2008-3624
CVE-2008-3625
CVE-2008-3626
CVE-2008-3627
CVE-2008-3628
CVE-2008-3629
CVE-2008-3635

References

iDefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=744

 ZDI
http://www.zerodayinitiative.com/advisories/ZDI-08-057/
http://www.zerodayinitiative.com/advisories/ZDI-08-058/
http://www.zerodayinitiative.com/advisories/ZDI-08-059/
http://www.zerodayinitiative.com/advisories/ZDI-08-060/
http://www.zerodayinitiative.com/advisories/ZDI-08-061/
http://www.zerodayinitiative.com/advisories/ZDI-08-062/

SecurityFocus
http://www.securityfocus.com/bid/31086

Secunia
http://secunia.com/advisories/31821/

SecurityTracker
http://securitytracker.com/alerts/2008/Sep/1020841.html


  
 
News & Events
 
Workshop on Cloud Security
Workshop on Mobile Security
Certificate Award Ceremony for Trainings in Information Security Management
Safer Internet Day 2011
09-Jul-2011
Computer Security Day 2010
  more...
 
Virus Alerts
RSS Feed
 
 
Subscribe Mailing List
 
 
 

Last Updated 20-Jul-2011
Disclaimer Maintained & Hosted by NCB
This site is best viewed in 1024 x 768 resolution. Internet Explorer 6.0 +