BID:30493

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

Info

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

Bugtraq ID:	30493
Class:	Boundary Condition Error
CVE:	CVE-2008-2325
Remote:	Yes
Local:	No
Published:	Jul 31 2008 12:00AM
Updated:	Aug 01 2008 05:17PM
Credit:	Apple
Vulnerable:	Apple Mac OS X Server 10.5.4 Apple Mac OS X Server 10.5.3 Apple Mac OS X Server 10.5.2 Apple Mac OS X Server 10.5.1 Apple Mac OS X Server 10.5 Apple Mac OS X 10.5.4 Apple Mac OS X 10.5.3 Apple Mac OS X 10.5.2 Apple Mac OS X 10.5.1 Apple Mac OS X 10.5

Not Vulnerable:

Discussion

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

Apple Mac OS X is prone to multiple memory-corruption vulnerabilities that affect the QuickLook component.

Attackers can exploit these issues to execute arbitrary code in the context of the affected application or cause denial-of-service conditions.

The following versions are affected:

Mac OS X v10.5.4 and prior
Mac OS X Server v10.5.4 and prior

This issue does not affect systems prior to Mac OS X v10.5.

NOTE: These issues were previously covered in BID 30483 (Apple Mac OS X 2008-005 Multiple Security Vulnerabilities) but have been given their own record to better document these vulnerabilities.

Exploit / POC

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

Solution:
The vendor has released an advisory and updates. Please see the referenced advisory for more information.

Apple Mac OS X 10.5.4

Apple SecUpd2008-005.dmg
For Mac OS X v10.5.4 and Mac OS X Server 10.5.4
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=20388&cat= 1&platform=osx&method=sa/SecUpd2008-005.dmg

Apple Mac OS X Server 10.5.4

Apple SecUpd2008-005.dmg
For Mac OS X v10.5.4 and Mac OS X Server 10.5.4
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=20388&cat= 1&platform=osx&method=sa/SecUpd2008-005.dmg

References

Apple Mac OS X QuickLook Multiple Memory Corruption Vulnerabilities

References:

Mac OS X Homepage (Apple)