| VID |
28237 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of QuickTime Player which is older than 7.6.2 has been installed on the host. Apple's QuickTime Player is a player that allow users to view local and remote multimedia content. QuickTime Player versions prior to 7.6 are vulnerable to multiple vulnerabilities. The version of QuickTime installed on the remote Windows host is older than 7.6.2. Such versions contain several vulnerabilities :
- An integer underflow in QuickTime's handling of PICT images may result in a heap buffer overflow and, in turn, to an application crash or arbitrary code execution.
- A heap buffer overflow in QuickTime's handling of MS ADPCM encoded audio data may lead to an application crash or arbitrary code execution.
- A memory corruption issue in QuickTime's handling of Sorenson 3 video files may lead to an application crash or arbitrary code execution.
- A heap buffer overflow in QuickTime's handling of FLC compression files may lead to an application crash or arbitrary code execution.
- A buffer overflow in QuickTime's handling of compressed PSD image files may lead to an application crash or arbitrary code execution.
- A heap buffer overflow in QuickTime's handling of PICT image files may lead to an application crash or arbitrary code execution.
- A heap buffer overflow in QuickTime's handling of Clipping Region (CRGN) atom types in a movie file may lead to an application crash or arbitrary code execution.
- A sign extension issue in QuickTime's handling of image description atoms in an Apple video file may lead to an application crash or arbitrary code execution.
- An uninitialized memory access issue in QuickTime's handling of movie files may lead to an application crash or arbitrary code execution.
- A heap buffer overflow in QuickTime's handling of JP2 image files may lead to an application crash or arbitrary code execution.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://support.apple.com/kb/HT3591
http://lists.apple.com/archives/security-announce/2009/jun/msg00000.html
* Platforms Affected:
Apple QuickTime Player versions prior to 7.6.2 (for Windows)
Apple Mac OS 10.x
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of QuickTime Player (7.6.2 or later), available from the Apple Web site at http://www.apple.com/quicktime/ |
| Related URL |
CVE-2009-0010,CVE-2009-0185,CVE-2009-0188,CVE-2009-0951,CVE-2009-0952,CVE-2009-0953,CVE-2009-0954,CVE-2009-0955,CVE-2009-0956,CVE-2009-0957 (CVE) |
| Related URL |
34938,35159,35161,35162,35163,35164,35165,35166,35167,35168 (SecurityFocus) |
| Related URL |
(ISS) |
|
