Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
BID:23923
Info
Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
| Bugtraq ID: | 23923 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0754 |
| Remote: | Yes |
| Local: | No |
| Published: | May 11 2007 12:00AM |
| Updated: | Mar 13 2008 04:01AM |
| Credit: | Ganesh Devarajan of TippingPoint DVLabs is credited with the discovery of this issue. |
| Vulnerable: |
Apple QuickTime Player 7.1.2 Apple QuickTime Player 7.1.1 Apple QuickTime Player 7.0.4 Apple QuickTime Player 7.0.3 Apple QuickTime Player 7.0.2 Apple QuickTime Player 7.0.1 Apple QuickTime Player 7.0 Apple QuickTime Player 7.1 |
| Not Vulnerable: | |
Discussion
Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
Apple QuickTime is prone to a heap-based buffer-overflow issue because it fails to properly check boundaries on user-supplied data before copying it into an insuficiently sized memory buffer.
An attacker may exploit this issue by enticing victims into opening a maliciously crafted 'MOV' QuickTime movie file.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions.
Versions of QuickTime 7 prior to 7.1.3 are vulnerable.
Apple QuickTime is prone to a heap-based buffer-overflow issue because it fails to properly check boundaries on user-supplied data before copying it into an insuficiently sized memory buffer.
An attacker may exploit this issue by enticing victims into opening a maliciously crafted 'MOV' QuickTime movie file.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions.
Versions of QuickTime 7 prior to 7.1.3 are vulnerable.
Exploit / POC
Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
Solution:
This issue has been addressed in QuickTime 7.1.3 and later versions. Please see the references for more information.
Solution:
This issue has been addressed in QuickTime 7.1.3 and later versions. Please see the references for more information.
References
Apple QuickTime MOV File STSD Heap Buffer Overflow Vulnerability
References:
References:
- About the security content of QuickTime 7.1.3 (Apple)
- Apple QuickTime Homepage (Apple)
- Quicktime Downloads Page (Apple)
- TPTI-07-07: Apple QuickTime STSD Parsing Heap Overflow Vulnerability (Tipping Point)
- Apple QuickTime STSD Parsing Heap Overflow Vulnerability (Tipping Point)