CERT-In Advisory CIAD-2009-26
Multiple Vulnerabilities in Apple QuickTime
Original issue date:
June 03, 2009
Severity Rating: Medium
Software Affected
- Apple QuickTime Player 7.6.1 and prior
Systems Affected
- Mac OS X v10.4.11
- Mac OS X v10.5.7
- Microsoft Windows Vista
- Microsoft Windows XP SP3
Overview
Multiple buffer overflow vulnerabilities have been reported in Apple QuickTime which could allow remote attacker to execute arbitrary code on affected systems and failure attempts may cause denial of service condition.
Description
1. Interger Underflow Vulnerability (CVE-2009-0010)
An interger underflow vulnerability has been reported in QuickDraw Manager of Apple QuickTime. This vulnerability is caused due to improper handling of PICT image files, which could lead to heap buffer overflow condition.
2. Heap Buffer Overflow Vulnerability in MS ADPCM Audio File formats
(CVE-2009-0185)
A Heap-based buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of MS ADPCM encoded audio data.
3. Memory Corruption Vulnerability (CVE-2009-0188)
A Memory corruption vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of Sorenson 3 video files.
4. Heap Buffer Overflow Vulnerability (CVE-2009-0951)
A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of FLC compressed file formats.
5. Buffer Overflow Vulnerability (CVE-2009-0952)
A Buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused while processing compressed PSD Image file formats.
6. Heap Buffer Overflow vulnerability (CVE-2009-0953)
A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of PICT Image file formats.
6. Heap Buffer Overflow vulnerability (CVE-2009-0954)
A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of Clipping Region ( CRGN ) atom types in a movie file format.
7. Sign Extension Vulnerability (CVE-2009-0955)
A sign extension issue exists in Apple QuickTime. This vulnerability is caused due to improper handling of image description atoms.
8. Remote code execution vulnerability (CVE-2009-0956)
An uninitialized memory access issue exists in Apple QuickTime. This vulnerability is caused due to improper handling of movie file formats with a zero user data atom size.
9. Heap Buffer Overflow vulnerability (CVE-2009-0957)
A Heap buffer overflow vulnerability has been reported in Apple QuickTime. This vulnerability is caused due to improper handling of JP2 image file formats.
A remote attacker could exploit these vulnerabilities by enticing naive users to open specially crafted Apple QuickTime files. Successful exploitation of these vulnerabilities could allow remote attacker to execute arbitrary code on the machine installed with affected softwares with privileges of currently logged-in user. Unsuccessful attempts could result in denial of service condition or application crash.
Solution
Upgrade to Apple QuickTime 7.6.2 .
http://www.apple.com/support/downloads/
Vendor Information
Apple
http://support.apple.com/kb/HT3591
http://www.apple.com/quicktime/
References
SecurityFocus
http://www.securityfocus.com/bid/28548/discuss
CVE-Name
CVE-2009-0010
CVE-2009-0185
CVE-2009-0188
CVE-2009-0951
CVE-2009-0952
CVE-2009-0953
CVE-2009-0954
CVE-2009-0955
CVE-2009-0956
CVE-2009-0957
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Phone: +91-11-24368572
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
|
