Signature Detail
Short Name |
HTTP:STC:DL:QT-UDTA-ATOM |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Apple QuickTime 'udta' Atom Parsing Heap Overflow Vulnerability |
Release Date |
2010/10/05 |
Update Number |
1785 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Apple QuickTime 'udta' Atom Parsing Heap Overflow Vulnerability
This signature detects attempts to exploit a known vulnerability against Apple Quicktime. A successful attack can lead to arbitrary code execution.
Extended Description
Apple QuickTime is prone to multiple unspecified remote code-execution vulnerabilities including mulitple heap and stack-based buffer-overflow and integer-overflow issues. These issues arise when the application handles specially crafted 3GP, MIDI, MOV, PICT, and QTIF files. An attacker can exploit these issues to execute arbitrary code in the context of the user running the applicaiton. Successful attacks can result in the compromise of the applicaiton or can cause denial-of-service conditions. Few details regarding these issues are currently available. Separate BIDs for each issue will be created as new information becomes available. QuickTime versions prior to 7.1.5 are vulnerable.
Affected Products
- Apple QuickTime Player 5.0.2
- Apple QuickTime Player 6
- Apple QuickTime Player 6.1.0
- Apple QuickTime Player 6.5.0
- Apple QuickTime Player 6.5.1
- Apple QuickTime Player 6.5.2
- Apple QuickTime Player 7.0.0
- Apple QuickTime Player 7.0.1
- Apple QuickTime Player 7.0.2
- Apple QuickTime Player 7.0.3
- Apple QuickTime Player 7.0.4
- Apple QuickTime Player 7.1
- Apple QuickTime Player 7.1.1
- Apple QuickTime Player 7.1.2
- Apple QuickTime Player 7.1.3
- Apple QuickTime Player 7.1.4
References
- BugTraq: 22827
- CVE: CVE-2007-0714