OSVDB ID: 35577

Title: Apple QuickTime JVTCompEncodeFrame Function MOV File Handling Overflow

Info

Disclosure

Apr 24, 2007

Discovery

Mar 28, 2006

Dates

Exploit

Unknown

Solution

Unknown

Description

A memory corruption flaw exists in Quicktime. It fails to validate H.264 movie files resulting in memory corruption. With a specially crafted .mov file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 7.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Apple Computer, Inc.

QuickTime

7.1

References

Security Tracker: 1017965 1018373
CVE ID: 2007-2295 (see also: NVD)
Bugtraq ID: 23650
Secunia Advisory ID: 26034
SCIP VulDB ID: 3187
ISS X-Force ID: 35356
VUPEN Advisory: ADV-2007-2510
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=305947
Other Advisory URL: http://security-protocols.com/sp-x45-advisory.php

Credit

Tom Ferris - tommysecurity-protocols.com - Security-Protocols
Matt Slot -

Direct URL: http://osvdb.org/35577