You are here

U-170: Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code

May 16, 2012 - 7:00am

Addthis

PROBLEM:

Apple QuickTime Multiple Flaws Let Remote Users Execute Arbitrary Code

PLATFORM:

prior to 7.7.2

ABSTRACT:

Multiple vulnerabilities were reported in Apple QuickTime. A remote user can cause arbitrary code to be executed on the target user's system.

Reference LINKS: 

SecurityTracker Alert ID: 1027065
CVE-2012-0265
CVE-2012-0663
CVE-2012-0664
CVE-2012-0665
CVE-2012-0666

IMPACT ASSESSMENT:

High

Discussion:

A remote user can create a specially crafted file that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user. Only Windows-based systems are affected. A file opened from a specially crafted path can trigger a stack overflow. A specially crafted TeXML file can trigger a stack overflow. A specially crafted text track in a movie file can trigger a heap overflow. A specially crafted H.264 encoded movie file can trigger a heap overflow. A specially rafted QTMovie object can trigger a stack overflow.

A specially crafted QTVR movie file can trigger a signedness error [CVE-2012-0667]. A specially crafted RLE encoded movie file can trigger a buffer overflow [CVE-2012-0668]. A specially crafted Sorenson encoded movie file can trigger a buffer overflow [CVE-2012-0669]. A specially crafted QuickTime sean atom can trigger an integer overflow [CVE-2012-0670]. A specially crafted '.pict' file can trigger a memory corruption error [CVE-2012-0671].

Impact:

A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system.

Solution:

The vendor has issued a fix (7.7.2).

 

Addthis