Apple releases QuickTime security fix

By Bill Brenner, Senior News Writer 06 Nov 2007 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Apple Inc. released QuickTime 7.3 Monday to fix at least seven security flaws in the popular media player, days after security vendor Bit9 Inc. named QuickTime 7.2 the second-most-vulnerable application of 2007.

Cupertino, Calif.-based Apple said in its 306896 security advisory that the QuickTime updates apply to users running the application on Mac OS X and Microsoft Windows, including XP and Vista. The advisory mentions the following flaws and fixes:

A memory corruption issue exists in QuickTime's handling of image description atoms. By enticing a user to open a maliciously crafted movie file, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of QuickTime image descriptions.

A heap buffer overflow exists in QuickTime Player's handling of Sample Table Sample Descriptor (STSD) atoms. By enticing a user to open a maliciously crafted movie file, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of STSD atoms.

Multiple vulnerabilities exist in QuickTime for Java, which may allow untrusted Java applets to obtain elevated privileges. By enticing a user to visit a Web page containing a maliciously crafted Java applet, an attacker may cause the disclosure of sensitive information and arbitrary code execution with elevated privileges. This update addresses the issues by making QuickTime for Java no longer accessible to untrusted Java applets.

A stack buffer overflow exists in PICT image processing. By enticing a user to open a maliciously crafted image, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of PICT files.

A heap buffer overflow exists in PICT image processing. By enticing a user to open a maliciously crafted image, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of PICT files.

A heap buffer overflow exists in QuickTime's handling of panorama sample atoms in QTVR (QuickTime Virtual Reality) movie files. By enticing a user to view a maliciously crafted QTVR file, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing bounds checking on panorama sample atoms.

A heap buffer overflow exists in the parsing of the color table atom when opening a movie file. By enticing a user to open a maliciously crafted movie file, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of color table atoms.

These fixes come after QuickTime 7.2 last week was rated the second-most-vulnerable application on Bit9's list. Yahoo! Messenger 8.1.0.239 and earlier was named the most-flawed application. QuickTime was followed on the list by Mozilla Firefox 2.0.0.6, Microsoft Windows Live (MSN) Messenger 7.0, 8.0; EMC VMware Player (and other products) 2.0, 1.0.4; Apple iTunes 7.3.2; Intuit QuickBooks Online Edition 9 and earlier; Sun Java Runtime 1.6.0_X; Yahoo! Widgets 4.0.5 and previous; and Ask.com Toolbar 4.0.2.53 and previous.

Tags: Alternative OS security: Mac, Linux, Unix, etc.,  Securing Productivity Applications,  Application Attacks (Buffer Overflows, Cross-Site Scripting),  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Alternative OS security: Mac, Linux, Unix, etc. Is New Google Chromium OS a Security Game-Changer? What are the Mac OS X Snow Leopard antivirus features? Machiavelli Mac OS X rootkit unveiled at Black Hat How secure is 'Platform as a Service (PaaS)?' Security comparison: Mac OS X vs. Windows Mac OS memory flaws pose challenges for enterprise endpoint protection Rootkit Hunter demo: Detect and remove Linux rootkits Oracle to buy Sun Microsystems for $7.4 billion How to harden Linux operating systems Serious holes in Mac OS X memory, researcher shows Alternative OS security: Mac, Linux, Unix, etc. Research Securing Productivity Applications FTC probes P2P corporate data leaks Secure software development is difficult, but tools, techniques improving, expert says Adobe issues emergency update, repairs critical Reader flaw Adobe addresses critical Flash flaw, plans Reader security update Adobe issues patch fixing month-long PDF zero-day vulnerability Another PDF attack targets Adobe zero-day vulnerability Active PDF attacks target Reader, Acrobat zero-day vulnerability Software piracy group offers cash to whistleblowers How to secure a .pdf file How do hackers bypass a code signing procedure to inject malware Application Attacks (Buffer Overflows, Cross-Site Scripting) Adobe issues emergency update, repairs critical Reader flaw Adobe addresses critical Flash flaw, plans Reader security update Quiz: Securing the application layer Improving software with the Building Security in Maturity Model (BSIMM) Latest zero-day attacks only target IE 6, Microsoft says Social networking security: Twitter, Facebook hacker attacks climbing Web application attacks security guide: Preventing attacks and flaws How to stop buffer-overflow attacks and find flaws, vulnerabilities Preventing and stopping SQL injection hack attacks Distributed denial-of-service protection: How to stop DDoS attacks Application Attacks (Buffer Overflows, Cross-Site Scripting) Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary trusted computing  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary