Apple QuickTime Color Table ID Heap Overflow Vulnerability
BID:22839
Info
Apple QuickTime Color Table ID Heap Overflow Vulnerability
| Bugtraq ID: | 22839 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0718 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 06 2007 12:00AM |
| Updated: | Mar 06 2007 12:00AM |
| Credit: | Ruben Santamarta of Reversemode Labs is credited with the discovery of this issue. |
| Vulnerable: |
Apple QuickTime Player 7.1.3 |
| Not Vulnerable: |
Apple QuickTime Player 7.1.5 |
Discussion
Apple QuickTime Color Table ID Heap Overflow Vulnerability
QuickTime is prone to a heap-overflow vulnerability because it fails to perform adequate bounds checking on user-supplied data.
An attacker can exploit this vulnerability to corrupt heap memory and execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely cause denial-of-service conditions.
QuickTime 7.1.3 is vulnerable; other versions may also be affected.
This issue was previously discussed in BID 22827 (Apple QuickTime Multiple Unspecified Code Execution Vulnerabilities), but has been assigned its own record because of new information.
QuickTime is prone to a heap-overflow vulnerability because it fails to perform adequate bounds checking on user-supplied data.
An attacker can exploit this vulnerability to corrupt heap memory and execute arbitrary code in the context of the user running the application. Failed exploit attempts will likely cause denial-of-service conditions.
QuickTime 7.1.3 is vulnerable; other versions may also be affected.
This issue was previously discussed in BID 22827 (Apple QuickTime Multiple Unspecified Code Execution Vulnerabilities), but has been assigned its own record because of new information.
Exploit / POC
Apple QuickTime Color Table ID Heap Overflow Vulnerability
To exploit this issue, an attacker must entice a victim to open a maliciously crafted file.
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
To exploit this issue, an attacker must entice a victim to open a maliciously crafted file.
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
Apple QuickTime Color Table ID Heap Overflow Vulnerability
Solution:
Apple has released advisory APPLE-SA-2007-03-05 and QuickTime 7.1.5 to address this issue. Please see the references for more information.
Solution:
Apple has released advisory APPLE-SA-2007-03-05 and QuickTime 7.1.5 to address this issue. Please see the references for more information.
References
Apple QuickTime Color Table ID Heap Overflow Vulnerability
References:
References: