Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
BID:39140
Info
Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
| Bugtraq ID: | 39140 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2010-0529 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 30 2010 12:00AM |
| Updated: | Apr 06 2010 09:22PM |
| Credit: | Damian Put working with TippingPoint's Zero Day Initiative |
| Vulnerable: |
Apple QuickTime Player 7.6.5 Apple QuickTime Player 7.6.4 Apple QuickTime Player 7.6.2 Apple QuickTime Player 7.6.1 Apple QuickTime Player 7.6 |
| Not Vulnerable: |
Apple QuickTime Player 7.6.6 |
Discussion
Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
Apple QuickTime is prone to a heap-based buffer-overflow vulnerability because it fails to sufficiently validate user-supplied data when parsing PICT images.
Successful exploits may allow attackers to execute arbitrary code in the context of the currently logged-in user; failed exploit attempts will cause denial-of-service conditions.
Versions prior to QuickTime 7.6.6 are vulnerable on Windows 7, Vista, and XP.
NOTE: This issue was previously covered in 39087 (Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities) but has been assigned its own record to better document it.
Apple QuickTime is prone to a heap-based buffer-overflow vulnerability because it fails to sufficiently validate user-supplied data when parsing PICT images.
Successful exploits may allow attackers to execute arbitrary code in the context of the currently logged-in user; failed exploit attempts will cause denial-of-service conditions.
Versions prior to QuickTime 7.6.6 are vulnerable on Windows 7, Vista, and XP.
NOTE: This issue was previously covered in 39087 (Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities) but has been assigned its own record to better document it.
Exploit / POC
Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
Solution:
The vendor has released an advisory and fixes. Please see the references for details.
Solution:
The vendor has released an advisory and fixes. Please see the references for details.
References
Apple QuickTime PICT File Remote Heap Buffer Overflow Vulnerability
References:
References:
- Apple QuickTime Homepage (Apple)
- ZDI-10-067: Apple QuickTime Pict BkPixPat Remote Code Execution Vulnerability (ZDI Disclosures
- ZDI-10-067 Apple QuickTime Pict BkPixPat Remote Code Execution Vulnerability (Zero Day Initiative)