OSVDB ID: 35578

Title: Apple QuickTime FlipFileTypeAtom_BtoN Function MP4 File Handling Overflow

Info

Disclosure

Apr 24, 2007

Discovery

Nov 17, 2006

Dates

Exploit

Unknown

Solution

Unknown

Description

An integer overflow exists in Quicktime. It fails to validate .m4v files resulting in an integer overflow. With a specially crafted file, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 7.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Apple Computer, Inc.

QuickTime

7.1

References

Security Tracker: 1017967 1018373
CVE ID: 2007-2296 (see also: NVD)
Bugtraq ID: 23652
Secunia Advisory ID: 26034
SCIP VulDB ID: 3188
VUPEN Advisory: ADV-2007-2510
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=305947
Other Advisory URL: http://security-protocols.com/sp-x46-advisory.php

Credit

Tom Ferris - tommysecurity-protocols.com - Security-Protocols

Direct URL: http://osvdb.org/35578