Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
BID:23652
Info
Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
| Bugtraq ID: | 23652 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-2296 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 25 2007 12:00AM |
| Updated: | Jul 12 2007 04:27AM |
| Credit: | Tom Ferris is credited with the discovery of this issue. |
| Vulnerable: |
Apple QuickTime Player 7.1.5 Apple QuickTime Player 7.1.4 Apple QuickTime Player 7.1.3 Apple QuickTime Player 7.1.2 Apple QuickTime Player 7.1.1 Apple QuickTime Player 7.1 |
| Not Vulnerable: |
Apple QuickTime Player 7.2 |
Discussion
Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
Apple QuickTime is prone to an integer-overflow issue because it fails to properly verify user-supplied input.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions.
Apple QuickTime is prone to an integer-overflow issue because it fails to properly verify user-supplied input.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions.
Exploit / POC
Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
To exploit this issue, an attacker must entice a victim to open a maliciously crafted MP4 file.
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
To exploit this issue, an attacker must entice a victim to open a maliciously crafted MP4 file.
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
Solution:
Apple security advisory APPLE-SA-2007-07-11 and fixes are available; please see the reference section for details.
Apple QuickTime Player 7.1
Apple QuickTime Player 7.1.1
Apple QuickTime Player 7.1.2
Apple QuickTime Player 7.1.3
Apple QuickTime Player 7.1.4
Apple QuickTime Player 7.1.5
Solution:
Apple security advisory APPLE-SA-2007-07-11 and fixes are available; please see the reference section for details.
Apple QuickTime Player 7.1
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
Apple QuickTime Player 7.1.1
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
Apple QuickTime Player 7.1.2
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
Apple QuickTime Player 7.1.3
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
Apple QuickTime Player 7.1.4
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
Apple QuickTime Player 7.1.5
-
Apple QuickTime 7.2 for Windows
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=14402&cat= 59&platform=osx&method=sa/
References
Apple QuickTime MP4 FlipFileTypeAtom_BtoN Integer Overflow Vulnerability
References:
References:
- Apple QuickTime .mp4 'FlipFileTypeAtom_BtoN' Integer Overflow (Security-Protocols)
- Apple QuickTime Homepage (Apple)