Computer Security
[EN] securityvulns.ru no-pyccku


Apple QuickTime multiple security vulnerabilities
updated since 10.09.2008
Published:16.09.2008
Source:
SecurityVulns ID:9281
Type:client
Threat Level:
7/10
Description:Integer overflow on PICT parsing, memory corruptions on STSZ, MDAT and H.264 parsing. Buffer overflows on AVC1 and Panorama PDAT parsing.
Affected:APPLE : QuickTime Player 7.4
 APPLE : QuickTime 7.4
CVE:CVE-2008-3635 (Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.)
 CVE-2008-3627 (Apple QuickTime before 7.5.5 does not properly handle (1) MDAT atoms in MP4 video files within QuickTimeH264.qtx, (2) MDAT atoms in mov video files within QuickTimeH264.scalar, and (3) AVC1 atoms in an unknown media type within an unspecified component, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a crafted, H.264 encoded movie file.)
 CVE-2008-3627 (Apple QuickTime before 7.5.5 does not properly handle (1) MDAT atoms in MP4 video files within QuickTimeH264.qtx, (2) MDAT atoms in mov video files within QuickTimeH264.scalar, and (3) AVC1 atoms in an unknown media type within an unspecified component, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a crafted, H.264 encoded movie file.)
 CVE-2008-3626 (The CallComponentFunctionWithStorage function in Apple QuickTime before 7.5.5 does not properly handle a large entry in the sample_size_table in STSZ atoms, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file.)
 CVE-2008-3625 (Stack-based buffer overflow in Apple QuickTime before 7.5.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a QuickTime Virtual Reality (QTVR) movie file with crafted (1) maxTilt, (2) minFieldOfView, and (3) maxFieldOfView elements in panorama track PDAT atoms.)
 CVE-2008-3615 (ir50_32.qtx in an unspecified third-party Indeo v5 codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, accesses uninitialized memory, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.)
 CVE-2008-3614 (Integer overflow in Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image, which triggers heap corruption.)
Original documentdocumentNGSSoftware Insight Security Research Advisory (NISR), Critical Vulnerability in Apple Quicktime’s Indeo Codec (16.09.2008)
 documentZDI, ZDI-08-057: Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability (12.09.2008)
 documentZDI, ZDI-08-060: Apple QuickTime AVC1 Atom Parsing Heap Overflow Vulnerability (10.09.2008)
 documentZDI, ZDI-08-059: Apple QuickTime STSZ Atom Parsing Heap Corruption Vulnerability (10.09.2008)
 documentZDI, ZDI-08-058: Apple QuickTime Panorama PDAT Atom Parsing Buffer Overflow Vulnerability (10.09.2008)
 documentZDI, ZDI-08-062: Apple QuickTime MDAT Frame Parsing Memory Corruption Vulnerability (10.09.2008)
 documentZDI, ZDI-08-061: Apple QuickTime Player H.264 Parsing Heap Corruption Vulnerability (10.09.2008)
 documentIDEFENSE, iDefense Security Advisory 09.09.08: Apple QuickTime PICT Integer Overflow Vulnerability (10.09.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod