On TechRepublic: 10 cool USB flash drive tricks
BNET Business Network:
BNET
TechRepublic
ZDNet

June 10th, 2008

Code execution flaws hit QuickTime again

Posted by Ryan Naraine @ 5:09 am

Categories: Apple, Arbitrary Code Execution, Browsers, Data theft, Exploit code, Patch Watch, Responsible disclosure, Viruses and Worms, Vulnerability research

Tags: Apple Macintosh, Apple QuickTime, Flaw, Apple Mac OS X, Apple Mac OS, Operating Systems, Microsoft Windows, Desktops, Digital Music, Digital Media

Code execution flaws hit QuickTime againApple has shipped a highly critical QuickTime software update with patches for at least five code execution vulnerabilities haunting Windows XP, Windows Vista and Mac OS X users.

With QuickTime 7.5, Apple corrects multiple buffer overflows, memory corruption issues and URI handling flaws that could allow malicious hackers to launch exploits with QuickTime movie or image files.

The details from Apple’s advisory:

CVE-2008-1581: Available for Windows Vista and Windows XP SP2

An issue in QuickTime’s handling of PixData structures when processing a PICT image may result in a heap buffer overflow. Opening a maliciously crafted PICT image may lead to an unexpected application termination or arbitrary code execution.  This issue does not affect systems running Mac OS X.

CVE-2008-1582: Available for Mac OS X v10.3.9, Mac OS X v10.4.9 - v10.4.11, Mac OS X v10.5 or later, Windows Vista, XP SP2
A memory corruption issue exists in QuickTime’s handling of AAC-encoded media content. Opening a maliciously crafted
media file may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of media files.

CVE-2008-1583:  Available for Mac OS X v10.3.9, Mac OS X v10.4.9 - v10.4.11, Mac OS X v10.5 or later, Windows Vista, XP SP2
A heap buffer overflow exists in QuickTime’s handling of PICT images. Opening a maliciously crafted PICT image file may
lead to an unexpected application termination or arbitrary code execution. This update addresses the issue through improved bounds checking.

CVE-2008-1584:  Available for Mac OS X v10.3.9, Mac OS X v10.4.9 - v10.4.11, Mac OS X v10.5 or later, Windows Vista, XP SP2
An issue in QuickTime’s handling of Indeo video codec content may result in a stack buffer overflow. Viewing a maliciously
crafted movie file with Indeo video codec content may lead to an unexpected application termination or arbitrary code execution. This update addresses the issue by not rendering Indeo video codec content.

CVE-2008-1585:  Available for Mac OS X v10.3.9, Mac OS X v10.4.9 - v10.4.11, Mac OS X v10.5 or later, Windows Vista, XP SP2

A URL handling issue exists in QuickTime’s handling of file: URLs. This may allow arbitrary applications and files to be
launched when a user plays maliciously crafted QuickTime content in QuickTime Player. This update addresses the issue by revealing files in Finder or Windows Explorer rather than launching them.

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

  • Talkback
  • Most Recent of 36 Talkback(s)
Yep!
Had QtA in the place of Qt for the last 7-8 months. Haven't looked back since.

Nice post TripleII... (Read the rest)
Posted by: thx-1138_@... Posted on: 06/13/08 You are currently: a Guest | | Terms of Use
I banned QuickTime from my system  qmlscycrajg | 06/10/08
Same here...  zenwalker | 06/10/08
Well I still use it.  Intellihence | 06/10/08
So do I  labarker | 06/11/08
Divorcing  tikigawd | 06/11/08
I've got both VLC and Windows Media Player but  labarker | 06/11/08
Ditto  CreepinJesus | 06/11/08
banded it long ago  dragon@... | 06/13/08
And Apple wants me to store my data on their servers?  NonZealot | 06/10/08
Well technically  Michael Kelly | 06/10/08
How much longer can they enforce this garbage?  TripleII | 06/10/08
Security by Obscurity.  Intellihence | 06/10/08
security by obscurity is apple's best  rtk | 06/11/08
Yep!  thx-1138_@... | 06/13/08
Ugh.  frgough | 06/10/08
Why would they when you all defend them for it?  NonZealot | 06/10/08
I think QuickTime is used for Windows iPod users too.  TripleII | 06/10/08
You know what's the most pathetic?  frgough | 06/10/08
Thanks for the ad hominem!  NonZealot | 06/10/08
Listen to the Name caller here,,,  Intellihence | 06/10/08
MS has fared better  tonymcs@... | 06/10/08
It's not the hardware  alaniane@... | 06/11/08
No News...  JT82 | 06/10/08
Come on Ryan - irresponsibly unfair  Narr vi | 06/10/08
Well we have to satisfy all the crybabies once in awhile.  Intellihence | 06/10/08
You are missing the point  tonymcs@... | 06/10/08
the fix is now - the flaw was announced weeks ago  Narr vi | 06/11/08
Oh Yaaaaawn...  arminw | 06/11/08
The QuickTime update just crashed my browser  marksashton | 06/10/08
Careful, you may have just gotten malware  NonZealot | 06/10/08
QuickTime again get vlc  Hotdoge3 | 06/10/08
Please make them stop  tonymcs@... | 06/10/08
RE: Code execution flaws hit QuickTime again  ratfret | 06/11/08
RE: Code execution flaws hit QuickTime again  skris88@... | 06/11/08
Over here, Ryan.  Narr vi | 06/11/08
Way back when...  arminw | 06/11/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
Click Here

Recent Entries

advertisement
Click Here

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads