Executive Summary
Summary | |
---|---|
Title | Apple QuickTime Updates for Multiple Vulnerabilities |
Informations | |||
---|---|---|---|
Name | TA09-022A | First vendor Publication | 2009-01-22 |
Vendor | US-CERT | Last vendor Modification | 2009-01-22 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Apple has released QuickTime 7.6 to correct multiple vulnerabilities affecting QuickTime for Mac OS X and Windows. I. Description Apple QuickTime 7.6 addresses a number of vulnerabilities affecting QuickTime. An attacker could exploit these vulnerabilities by convincing a user to access a specially crafted media or movie file. This file could be hosted on a web page or sent via email. II. Impact The impacts of these vulnerabilities vary. Potential consequences include arbitrary code execution and denial of service. III. Solution Upgrade to QuickTime 7.6. This and other updates are available via Software Update or via Apple Downloads. |
Original Source
Url : http://www.us-cert.gov/cas/techalerts/TA09-022A.html |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
71 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
14 % | CWE-399 | Resource Management Errors |
14 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:5646 | |||
Oval ID: | oval:org.mitre.oval:def:5646 | ||
Title: | Apple QuickTime QTVR Heap Based buffer overflow vulnerability | ||
Description: | Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QTVR movie file with crafted THKD atoms. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0002 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6132 | |||
Oval ID: | oval:org.mitre.oval:def:6132 | ||
Title: | Apple QuickTime JPEG Heap Based buffer overflow vulnerability | ||
Description: | Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0007 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6135 | |||
Oval ID: | oval:org.mitre.oval:def:6135 | ||
Title: | Apple QuickTime RTSP URL Heap Based buffer overflow vulnerability | ||
Description: | Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted RTSP URL. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0001 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6153 | |||
Oval ID: | oval:org.mitre.oval:def:6153 | ||
Title: | Apple QuickTime cinepak Heap Based buffer overflow vulnerability | ||
Description: | Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0006 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6187 | |||
Oval ID: | oval:org.mitre.oval:def:6187 | ||
Title: | Apple QuickTime H.263 Unspecified Vulnerability | ||
Description: | Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted H.263 encoded movie file that triggers memory corruption. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0005 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6211 | |||
Oval ID: | oval:org.mitre.oval:def:6211 | ||
Title: | Apple QuickTime MP3 Buffer Overflow Vulnerability | ||
Description: | Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted MP3 audio file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0004 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6218 | |||
Oval ID: | oval:org.mitre.oval:def:6218 | ||
Title: | Apple QuickTime AVI Heap Based buffer overflow vulnerability | ||
Description: | Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-0003 | Version: | 9 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 | Product(s): | Apple QuickTime |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-01-23 | Name : Apple QuickTime Multiple Vulnerabilities - Jan09 (Win) File : nvt/secpod_apple_quicktime_mult_vuln_jan09_win.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
51530 | Apple QuickTime Crafted JPEG Atom QuickTime Movie File Handling Overflow |
51529 | Apple QuickTime Crafted Cinepak Encoded File Handling Overflow |
51528 | Apple QuickTime Crafted H.263 Encoded File Handling Unspecified Memory Corrup... |
51527 | Apple QuickTime Crafted MP3 File Handling Overflow |
51526 | Apple QuickTime Crafted AVI File Handling Overflow |
51525 | Apple QuickTime Crafted THKD Atom QTVR File Handling Overflow |
51524 | Apple QuickTime Crafted RTSP URL Handling Overflow A remote overflow exists in Apple QuickTime Player. The media player fails to properly bounds check user input resulting in a heap overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity. |
Snort® IPS/IDS
Date | Description |
---|---|
2015-03-31 | Apple QuickTime STSD JPEG atom heap corruption attempt RuleID : 33578 - Revision : 3 - Type : FILE-MULTIMEDIA |
2015-03-31 | Apple QuickTime STSD JPEG atom heap corruption attempt RuleID : 33577 - Revision : 3 - Type : FILE-MULTIMEDIA |
2015-03-31 | Apple QuickTime STSD JPEG atom heap corruption attempt RuleID : 33576 - Revision : 2 - Type : FILE-MULTIMEDIA |
2015-03-31 | Apple QuickTime STSD JPEG atom heap corruption attempt RuleID : 33575 - Revision : 2 - Type : FILE-MULTIMEDIA |
2014-01-10 | Apple QuickTime VR Track Header Atom heap corruption attempt RuleID : 23623 - Revision : 5 - Type : FILE-MULTIMEDIA |
2014-01-10 | Apple QuickTime STSD JPEG atom heap corruption attempt RuleID : 17470 - Revision : 10 - Type : FILE-MULTIMEDIA |
2014-01-10 | Apple QuickTime VR Track Header Atom heap corruption attempt RuleID : 15909 - Revision : 18 - Type : FILE-MULTIMEDIA |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2009-01-22 | Name : The remote Mac OS X host contains an application that is affected by multiple... File : macosx_Quicktime76.nasl - Type : ACT_GATHER_INFO |
2009-01-22 | Name : The remote Windows host contains an application that is affected by multiple ... File : quicktime_76.nasl - Type : ACT_GATHER_INFO |