Apple Mac OS X QuickDraw GetSrcBits32ARGB Remote Memory Corruption Vulnerability

Bugtraq ID:	22207
Class:	Boundary Condition Error
CVE:	CVE-2007-0462
Remote:	Yes
Local:	No
Published:	Jan 23 2007 12:00AM
Updated:	May 12 2015 07:35PM
Credit:	This issue was discovered by LMH <[email protected]>.
Vulnerable:	Apple Mac OS X Server 10.4.8 Apple Mac OS X 10.4.8
Not Vulnerable:	Apple Mac OS X Server 10.4.9 Apple Mac OS X 10.4.9

Apple Mac OS X QuickDraw GetSrcBits32ARGB Remote Memory Corruption Vulnerability

Mac OS X QuickDraw is prone to a remote memory-corruption vulnerability because the software fails to properly handle malformed PICT image files.

Successfully exploiting this issue allows remote attackers to corrupt memory and crash the affected software. Attackers may also be able to execute arbitrary machine code, but this has not been confirmed.

Mac OS X 10.4.8 is vulnerable to this issue; other versions are also likely affected, since the vulnerable component has been included in Apple operating systems since System 6.0.4

Apple Mac OS X QuickDraw GetSrcBits32ARGB Remote Memory Corruption Vulnerability

The following exploit demonstrates this issue by crashing the affected software:

• /data/vulnerabilities/exploits/MOAB-23-01-2007.pct

Apple Mac OS X QuickDraw GetSrcBits32ARGB Remote Memory Corruption Vulnerability

Solution:
The vendor has released Mac OS X v10.4.9 to address this issue; please see the reference section for details.


Apple Mac OS X Server 10.4.8

• Apple Mac OS X v10.4.9
  http://www.apple.com/support/downloads/

Apple Mac OS X 10.4.8

• Apple Mac OS X v10.4.9
  http://www.apple.com/support/downloads/

Apple Mac OS X QuickDraw GetSrcBits32ARGB Remote Memory Corruption Vulnerability

References:

• Mac OS X Homepage (Apple)
  
• MOAB-23-01-2007: Apple QuickDraw GetSrcBits32ARGB() Memory Corruption Vulnerabil (LMH )