Signature Detail

HTTP: Apple QuickTime Movie File Clipping Region Handling Heap Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Apple QuickTime. A successful attack could allow the attacker to execute arbitrary code on the targeted system. Failed exploit attempts could result in a denial of service condition.

Extended Description

Apple QuickTime is prone to a heap-based buffer-overflow vulnerability. A remote attacker can exploit this issue by enticing an unsuspecting user to open a specially crafted file. Successful exploits will allow the attacker to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions. This issue affects Apple QuickTime running on Microsoft Windows Vista and Windows XP SP3.

Affected Products

• Apple QuickTime Player 5.0.2
• Apple QuickTime Player 6
• Apple QuickTime Player 6.1.0
• Apple QuickTime Player 6.4
• Apple QuickTime Player 6.5.0
• Apple QuickTime Player 6.5.1
• Apple QuickTime Player 6.5.2
• Apple QuickTime Player 7.0.0
• Apple QuickTime Player 7.0.1
• Apple QuickTime Player 7.0.2
• Apple QuickTime Player 7.0.3
• Apple QuickTime Player 7.0.4
• Apple QuickTime Player 7.1
• Apple QuickTime Player 7.1.1
• Apple QuickTime Player 7.1.2
• Apple QuickTime Player 7.1.3
• Apple QuickTime Player 7.1.4
• Apple QuickTime Player 7.1.5
• Apple QuickTime Player 7.1.6
• Apple QuickTime Player 7.2
• Apple QuickTime Player 7.3
• Apple QuickTime Player 7.3.1
• Apple QuickTime Player 7.3.1.70
• Apple QuickTime Player 7.4
• Apple QuickTime Player 7.4.1
• Apple QuickTime Player 7.4.5
• Apple QuickTime Player 7.5
• Apple QuickTime Player 7.5.5
• Apple QuickTime Player 7.6
• Apple QuickTime Player 7.6.1

References

• BugTraq: 35167
• CVE: CVE-2009-0954