Hotline : 800 2378
To contact CERT-MU send e-mail on - info[at]cert-mu.gov.mu
To report incident e-mail on - incident[at]cert-mu.gov.mu
    Constituency
    Authority
    World CERTs
    Email Abuse


Authorized to use CERT(TM) - CERT is a mark owned by Carnegie Mellon University
 
National Computer Board - (NCB)


   
 

CERT-MU AD-2009-07

Multiple Vulnerabilities in Apple QuickTime

Original issue date: 03 June, 2009

Overview

Multiple buffer overflow vulnerabilities have been reported in Apple QuickTime which could allow remote attacker to execute arbitrary code on affected systems and failure attempts may cause denial of service condition.

Description

  • Interger Underflow Vulnerability

    An interger underflow vulnerability has been reported in QuickDraw Manager of Apple QuickTime. This vulnerability is caused due to improper handling of PICT image files, which could lead to heap buffer overflow condition.

  • Heap Buffer Overflow Vulnerability in MS ADPCM Audio File formats

    A Heap-based buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of MS ADPCM encoded audio data.

  • Memory Corruption Vulnerability

    A Memory corruption vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of Sorenson 3 video files.

  • Heap Buffer Overflow Vulnerability

    A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of FLC compressed file formats.

  • Buffer Overflow Vulnerability

    A Buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused while processing compressed PSD Image file formats.

  • Heap Buffer Overflow vulnerability

    A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of PICT Image file formats.

  • Sign Extension Vulnerability

    A sign extension issue exists in Apple QuickTime. This vulnerability is caused due to improper handling of image description atoms.

  • Remote code execution vulnerability

    An uninitialized memory access issue exists in Apple QuickTime. This vulnerability is caused due to improper handling of movie file formats with a zero user data atom size.

  • Heap Buffer Overflow vulnerability

    A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of JP2 image file formats.

    A remote attacker could exploit these vulnerabilities by enticing naive users to open specially crafted Apple QuickTime files. Successful exploitation of these vulnerabilities could allow remote attacker to execute arbitrary code on the machine installed with affected softwares with privileges of currently logged-in user. Unsuccessful attempts could result in denial of service condition or application crash.

Software Affected 

• Apple QuickTime Player 7.6.1 and prior

Affected systems 

• Mac OS X v10.4.11
• Mac OS X v10.5.7
• Microsoft Windows Vista
• Microsoft Windows XP SP3

Impact

Severity Rating: Medium

Solution

Upgrade to Apple QuickTime 7.6.2.
http://www.apple.com/support/downloads/

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Vendor Information

Apple
http://support.apple.com/kb/HT3591
http://www.apple.com/quicktime/

CVE Name

CVE-2009-0010
CVE-2009-0185
CVE-2009-0188
CVE-2009-0951
CVE-2009-0952
CVE-2009-0953
CVE-2009-0954
CVE-2009-0955
CVE-2009-0956
CVE-2009-0957

References

SecurityFocus
http://www.securityfocus.com/bid/28548/discuss

  
 
News & Events
 
Technology Update Workshop on Vulnerability Management
Safer Internet Day 2010
  more...
 
Virus Alert
 
Bloodhound.Exploit.317
(11 Mar 2010)
W32.Pilleuz!gen4
(05 Mar 2010)
Trojan.Digitala
(26 Feb 2010)
 
  more...
 
Subscribe Mailing List
 
 
 

Last Updated 09-Jul-2009
Disclaimer Maintained & Hosted by NCB
This site is best viewed in 1024 x 768 resolution. Internet Explorer 6.0 +