The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of QuickTime: several vulnerabilities

Synthesis of the vulnerability 

Several QuickTime vulnerabilities can lead to code execution.
Impacted software: QuickTime.
Severity of this computer vulnerability: 3/4.
Number of vulnerabilities in this bulletin: 8.
Creation date: 06/11/2007.
Revision date: 15/11/2007.
Références of this announce: BID-26338, BID-26339, BID-26340, BID-26341, BID-26342, BID-26344, BID-26345, BID-26443, CERTA-2007-AVI-477, CVE-2007-2395, CVE-2007-3750, CVE-2007-3751, CVE-2007-4672, CVE-2007-4674, CVE-2007-4675, CVE-2007-4676, CVE-2007-4677, TPTI-07-20, VIGILANCE-VUL-7312, VU#319771, VU#445083, VU#690515, VU#797875, ZDI-07-065, ZDI-07-066, ZDI-07-067, ZDI-07-068.

Description of the vulnerability 

Several QuickTime vulnerabilities can lead to code execution.

When a video contains a malicious image description, a memory corruption occurs in QuickTime. [severity:3/4; BID-26340, CERTA-2007-AVI-477, CVE-2007-2395, VU#797875]

When a video contains a malicious STSD (Sample Table Sample Descriptor) field, a memory corruption occurs in QuickTime. [severity:3/4; BID-26341, CVE-2007-3750]

Several vulnerabilities of QuickTime for Java permit to obtain information or to execute code. [severity:3/4; BID-26339, CVE-2007-3751, VU#319771]

When QuickTime opens a PICT file with an invalid UncompressedQuickTimeData value, an overflow occurs. [severity:3/4; CVE-2007-4672, ZDI-07-068]

When QuickTime opens a PICT file with an invalid PackBitsRgn or Poly value, an overflow occurs. [severity:3/4; BID-26344, BID-26345, CVE-2007-4676, VU#690515, ZDI-07-066, ZDI-07-067]

The QTVR format (QuickTime Virtual Reality) contains panoramas which can be displayed under several angles. The QuickTime player does not validate panorama headers, which leads to an overflow. [severity:3/4; BID-26342, CVE-2007-4675]

A video contains a RVB color table named CTAB, which contains all colors. When size indicated by this table is incorrect, an overflow occurs in the QuickTime software. [severity:3/4; BID-26338, CVE-2007-4677, VU#445083, ZDI-07-065]

When QuickTime opens malicious video, an overflow occurs. [severity:3/4; BID-26443, CVE-2007-4674, TPTI-07-20]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This computer vulnerability impacts software or systems such as QuickTime.

Our Vigil@nce team determined that the severity of this weakness bulletin is important.

The trust level is of type confirmed by the editor, with an origin of document.

This bulletin is about 8 vulnerabilities.

An attacker with a expert ability can exploit this weakness.

Solutions for this threat 

QuickTime: version 7.3.
Version 7.3 is corrected:
  http://www.apple.com/support/downloads/
  http://docs.info.apple.com/article.html?artnum=106704
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides software vulnerability alerts. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.