Update IPS-1 with a Protection against Apple QuickTime and Apple QuickDraw Vulnerabilities
| Check Point Reference: | CPAI-2008-204 | |
| Date Published: | ||
| Severity: | ||
| Source: | ||
| Industry Reference(s): | CVE-2007-2296 CVE-2007-0462 CVE-2007-4672 CVE-2007-4676 |
|
| Protection Provided by: |
IPS-1
|
|
| Who is Vulnerable? Apple Quicktime 7.1.5 and other versions before 7.2 Apple Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier Apple QuickTime before 7.3 | ||
| Vulnerability Description Several vulnerabilities have been identified within various versions of Apple QuickTime and Apple QuickDraw that, if exploited, would allow a remote attacker to execute arbitrary code on a vulnerable system. |
||
|
Vulnerability Details Integer overflow in the FlipFileTypeAtom_BtoN function in Apple QuickTime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V (MP4) file. The _GetSrcBits32ARGB function in Apple QuickDraw, as used by QuickTime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PICT image with a malformed Alpha RGB (ARGB) record, which triggers memory corruption. Stack-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via an invalid UncompressedQuickTimeData opcode length in a PICT image. Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via malformed elements when parsing (1) Poly type (0x0070 through 0x0074) and (2) PackBitsRgn field (0x0099) opcodes in a PICT image. |
Protection Overview
Support for the PICT file format has been added to provide detection/protection for this attack.
To configure the defense, select your product from the list below and follow the related protection steps.