On The Insider: Trial Set for Anna Nicole Smith Case
BNET Business Network:
BNET
TechRepublic
ZDNet

August 5th, 2009

Apple warns of Mac attack risk via image files

Posted by Ryan Naraine @ 2:20 pm

Categories: Apple, Arbitrary Code Execution, Botnets, Browsers, Complex Attacks, Data theft, Exploit code, Malware, Passwords, Patch Watch, Responsible disclosure, Vulnerability research, Web Applications, Zero-day attacks

Tags: Apple Macintosh, Apple Inc., Arbitrary Code Execution, Image, PNG, Attack, Application Termination, OpenEXR, Ryan Naraine

Apple today warned that opening or viewing image files could lead to remote code execution attacks against Mac OS X users.

In an update that contains fixes for a total of 19 documented vulnerabilities, Apple said malicious hackers could rig PNG (Portable Network Graphics) and other images to take complete control of unpatched Mac systems.

Here’s the skinny on the image-related vulnerabilities fixed in Security Update 2009-003:

  • CVE-2009-1728 — A stack buffer overflow exists in the handling of Canon RAW images. Viewing a maliciously crafted Canon RAW image may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-1722 — A heap buffer overflow exists in ImageIO’s handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-1721 — An uninitialized memory access issue exists in ImageIO’s handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-1720 — Multiple integer overflows exist in ImageIO’s handling of OpenEXR images. Viewing a maliciously crafted OpenEXR image may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-2188 — A buffer overflow exists in ImageIO’s handling of EXIF metadata. Viewing a maliciously crafted image may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-0040 — An uninitialized pointer issue exists in the handling of PNG images. Processing a maliciously crafted PNG image may lead to an unexpected application termination or arbitrary code execution.

The update also fixes serious security flaws in ColorSync, kernel, CoreTypes and Networking.

* Image source: charliekwalker’s Flickr photostream (Creative Commons 2.0)

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

  • Talkback
  • Most Recent of 146 Talkback(s)
RE: Apple warns of Mac attack risk via image files
Thanks for pointing this out. The level of ignorance and bliss in the Mac community is astonishing. As a long time Mac user, UNIX user, Windows user and ex-DOS user, anyone that's been out there a whi... (Read the rest)
Posted by: 8string Posted on: 08/25/09 You are currently: a Guest | | Terms of Use
Wow, lots of critical vulnerabilities in there!!  NonZealot | 08/05/09
Well, just make sure...  A Grain of Salt | 08/05/09
I would be far from the first  NonZealot | 08/05/09
Anything is possible.  A Grain of Salt | 08/06/09
I notice that you conveniently ignore...  vulpine@... | 08/06/09
Right, trojans don't work when the software is free!!  NonZealot | 08/06/09
I did say they tried to get something for nothing...  vulpine@... | 08/06/09
What on earth are you talking about?  NonZealot | 08/06/09
He can't be the first...  ShadowGIATL | 08/05/09
I can't comment. I have never had a virus or trojan since using Apple ('97)  No More Microsoft Software Ever! | 08/06/09
Trojans  zdnet-gregc | 08/06/09
Me neither. Since my first Windows Machine.  xuniL_z | 08/06/09
And I disproved that  Wintel BSOD | 08/06/09
Well Said!  zdnet-gregc | 08/07/09
Curious question...  ShadowGIATL | 08/06/09
Your sarcasm behooves you, Zealot. Remember, you're one of us, now.  vulpine@... | 08/06/09
I am NOT one of you  NonZealot | 08/06/09
Are you using a Mac? Yes you are...  vulpine@... | 08/06/09
One of Us  bobiroc | 08/06/09
Probably only so/so at your job in that regard....  James Quinn | 08/06/09
What?  Badgered | 08/06/09
It also proves how unintuitive OS X is  NonZealot | 08/06/09
Not a user a support person as I've been told...  James Quinn | 08/06/09
@Jim  Badgered | 08/06/09
Nope. I assume he's VERY GOOD at PC support.  James Quinn | 08/06/09
Good Enough  bobiroc | 08/06/09
I had already assumed you passed Apple certification.  James Quinn | 08/06/09
What I excel at  bobiroc | 08/06/09
And those are good tools... I use them myself.  James Quinn | 08/06/09
@ Pagan Jim  bobiroc | 08/06/09
You are a bean counter my friend and there  James Quinn | 08/06/09
supporting Mac computers  kjpino | 08/07/09
Not difficult at all...  James Quinn | 08/07/09
@ Pagan Jim  bobiroc | 08/06/09
Do us all a favor. Don't buy Apple products!  No More Microsoft Software Ever! | 08/06/09
@No More Microsoft..  bobiroc | 08/06/09
Since the 90's eh? Man you are young:P  James Quinn | 08/06/09
The Best Computing Platform is?  Appreciate-Tech | 08/07/09
Whoa ! One of US ?  Jkirk3279 | 08/06/09
Letting NZ come!?!  James Quinn | 08/06/09
Jim, that was too gay. Even for you! (NT)  No More Microsoft Software Ever! | 08/06/09
NEVER make the mistake of assuming I have limits:P  James Quinn | 08/06/09
Well, I suppose if it made one person laugh...still...eww and sticky! (NT)  No More Microsoft Software Ever! | 08/06/09
That kind of sums up NZ "Ewww and sticky"  James Quinn | 08/06/09
That is hilarious  Wintel BSOD | 08/06/09
They're certainly beating Microsoft  Trolleur | 08/05/09
More people using it = more people finding the flaws  BillDem | 08/05/09
Now Now  bobiroc | 08/06/09
OS vulnerabilities  zdnet-gregc | 08/06/09
What "real world" are you living in?  TCollinsG3 | 08/06/09
Great post. I really don't get these anti-Mac folks.  No More Microsoft Software Ever! | 08/06/09
No! But you don't have to endure Mac Attacks Etiher (nt)  windozefreak | 08/06/09
Seems there are those kind of people...  ShadowGIATL | 08/06/09
No we don't think everyone should use windows  tealcat | 08/06/09
RE: Apple warns of Mac attack risk via image files  ozguy | 08/05/09
Charlie Miller  DeusExMachina | 08/06/09
LOL! More code that Windows? Did you really have to stoop to lying? (NT)  No More Microsoft Software Ever! | 08/06/09
Another one...  PlayFair | 08/06/09
No. I don't think I'll follow a ZDNet talkback as a credible source.  No More Microsoft Software Ever! | 08/06/09
@No More Microsoft Software Ever!  PlayFair | 08/06/09
Yes. There is a need to call a spade a spade.  No More Microsoft Software Ever! | 08/06/09
@No More Microsoft Software Ever!  PlayFair | 08/06/09
RE: Apple warns of Mac attack risk via image files  DannyO_0x98 | 08/05/09
Why would you be worried?  NonZealot | 08/05/09
RE: Apple warns of Mac attack risk via image files  Trolleur | 08/05/09
If that was in response to my post  NonZealot | 08/05/09
If that was in response to my post  zdnet-gregc | 08/06/09
RE: Apple warns of Mac attack risk via image files  lovemagic | 08/06/09
Anyone should not say one OS is safer than the other  rupaa62 | 08/06/09
Your right - but don't ruin our lunchtime entrtainment...  USTechHead | 08/06/09
Entertainment  zdnet-gregc | 08/06/09
Agreed: the devil you know is sometimes better  stroutner@... | 08/06/09
Here's a hint for you...  vulpine@... | 08/07/09
Nice try - try again and source it this time  stroutner@... | 08/08/09
Blindered, are you?  vulpine@... | 08/09/09
The reason is because  goff256 | 08/06/09
I believe ClamAV is good  Wintel BSOD | 08/06/09
ClamAV is NOT an AV program  wolf_z | 08/07/09
And I didn't say it was an anti-virus program  Wintel BSOD | 08/07/09
There is a need to run an anti-virus on ALL OS  goff256 | 08/08/09
I'm not an M$ fanboy  Wintel BSOD | 08/10/09
You're such a shill  goff256 | 08/11/09
ClamAV IS an AV program...  vulpine@... | 08/08/09
This just makes me laugh  Shelendrea | 08/06/09
And it is. Sorry you use Windows and have to purchase AV software. (NT)  No More Microsoft Software Ever! | 08/06/09
Most people...  wolf_z | 08/07/09
Fortunately...  Qbt | 08/06/09
This isn't a virus  anogee | 08/06/09
I did not say this was a virus either...  Qbt | 08/06/09
Of course, the opposite of that is...  vulpine@... | 08/06/09
That was weak...  ShadowGIATL | 08/06/09
The thing about the OS X Photoshop and Aperture2 warez is...  vulpine@... | 08/06/09
I do that ALL THE TIME on my Mac for the sake of  James Quinn | 08/06/09
Always two sides...  ShadowGIATL | 08/06/09
No .. no OS is perfect.  James Quinn | 08/06/09
I've done the same with Linux as well  Wintel BSOD | 08/06/09
Oh really?  Shelendrea | 08/06/09
You are correct. The "shield" you refer to  GuidingLight | 08/06/09
RE: Apple warns of Mac attack risk via image files  anogee | 08/06/09
Unfortunately, an image file is nothing but a data file.  vulpine@... | 08/06/09
@vulpine  PlayFair | 08/06/09
Hilarious, yes. Literal? Not quite.  vulpine@... | 08/06/09
Very true...  ShadowGIATL | 08/06/09
Does anyone ever wonder "IF" AV companies might  James Quinn | 08/06/09
It has been rumored before...  ShadowGIATL | 08/06/09
Damn, there goes my business model  HollywoodDog | 08/06/09
That will be 4%, not 10%  Qbt | 08/06/09
4%? Where did you get that number?  vulpine@... | 08/06/09
He Pulled It From His Botnet Hole  robertmro | 08/06/09
Nope  Wintel BSOD | 08/06/09
re: 4%? Where did you get that number?  Badgered | 08/06/09
I don't believe those numbers  NonZealot | 08/06/09
lol  darii@... | 08/06/09
Ah. I've been looking for that page.  vulpine@... | 08/06/09
I don't disagree...  Badgered | 08/06/09
market share  darii@... | 08/06/09
Not market share.  vulpine@... | 08/06/09
Okay, let me rewrite my statement  NonZealot | 08/06/09
realism  darii@... | 08/06/09
RE: Apple warns of Mac attack risk via image files  Gis Bun | 08/06/09
RE: Apple warns of Mac attack risk via image files  darii@... | 08/06/09
RE: Apple warns of Mac attack risk via image files  zdnet-gregc | 08/06/09
Mac OS market share at 8.9%, Dec 1 2008  HollywoodDog | 08/06/09
um...  Badgered | 08/06/09
Mac OS Market Share  zdnet-gregc | 08/06/09
Wow, Apple should hire 3 times more workers!!!  NonZealot | 08/06/09
You lost me  zdnet-gregc | 08/06/09
TOLD YA SO  jparr | 08/06/09
Viruses  macgroover | 08/06/09
Likelihood increases with market share  jparr | 08/07/09
True but other factors are also in play  mystic100 | 08/08/09
And more to the point...  ShadowGIATL | 08/08/09
... and within that point...  vulpine@... | 08/09/09
Much better point for you...  ShadowGIATL | 08/10/09
It's obvious you don't want to understand my meaning.  zdnet-gregc | 08/06/09
The most incredibly dishonest headline ever.  msalzberg | 08/06/09
That begs the question...  PlayFair | 08/06/09
Not out-and-out dishonest. Disingenuous, perhaps?  zdnet-gregc | 08/06/09
RE: Apple warns of Mac attack risk via image files  SpectreWriter | 08/06/09
Or how about the one that didn't get patched...  ShadowGIATL | 08/10/09
This security update is for the previous version of OS X (Tiger)  YuridaMan | 08/06/09
Try again. It's for both Tiger & Leopard  vulpine@... | 08/07/09
Tiger?  zdnet-gregc | 08/06/09
Why are we worried about one tiny vulnerability that's already been closed?  vulpine@... | 08/07/09
I guess for the same reason..  bobiroc | 08/07/09
RE: Apple warns of Mac attack risk via image files  8string | 08/25/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement
Click Here

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here