 |
|||||
|
|
|
|||
|
|
 |
|
|
|
|
|
|
|||
|
|
|
|
|
|
|
|
|
|||
|
|
|
|
|
|
|
|
|
|||
|
|
|
|
|
|
|
|
|
|||
|
|
 |
|
|
|
|
|
|
|||
|
|||||
|
|||||
|
|||||
|
|
|
|||
|
|
|
|
||
|
|
|
|||
|
|||||
| Reference: | CERT-IST/DG-2008.002 |
| Version: | 1.1 |
| Version date: | 07 February 2008 |
|
|
Vulnerability Classification
| Risk: |
|
||
| Impact: | Get access Disrupt service |
||
| Confidence: | Vendor-acknowledged | ||
| Attack expertise: | Expert | ||
| Attack requirements: | Remote (no account) over a standard service | ||
|
|||
System Information
| Affected Platform(s): |
|
| Affected Software(s): |
|
Remarks:
|
|
| Impacted products |
Description
| Publication context: |
|
| Version 1.1 : On February 04, 2008, Apple released the version 7.4.1 of QuickTime that fixes this vulnerability. The publication of that official fix closes, at Cert-IST side, the alert flag raised about that vulnerability. Please, now refer to the CERT-IST/AV-2008.047 advisory for an updated description of the vulnerability. In the present "Potential Danger" notice only the "Solution" section has been updated. Other sections are left unchanged to better reflect the situation that lead to the alert. The Cert-IST releases this "Potential Danger" following the release of a new "0-day" that exploits a stack overflow in the brand new version of QuickTime (version 7.3.1). As a reminder, this version fixed the RTSP vulnerability described in the CERT-IST/DG-2007.009 potential danger and in the CERT-IST/AV-2007.536 advisory. |
|
| Problem description: |
|
|
A "0-day" has just been released allowing to exploit a new flaw (without patch/solution) in the brand new version of QuickTime. This program only enables to crash QuickTime. However existing exploits (November 2007) for a similar vulnerability in QuickTime (for which we released the CERT-IST/DG-2007.009 potential danger on November 30, 2007) could quickly be modified in order to exploit this new vulnerability. As a reminder, those exploits enable a malicious person to remotely perform harmful actions on the system of a victim who clicks on a malicious RTSP link. Malicious actions are performed with the privileges of the user of the system hosting a vulnerable QuickTime version. The Cert-IST will release an alert as soon as we are informed that massive attacks occur. |
|
| Technical context: |
|
| RTSP ("Real Time Streaming Protocol") is a protocol for use in streaming media systems over IP networks. |
|
| Technical information: |
|
| The vulnerability is a stack overflow that occurs when QuickTime displays a long message on the screen giving information on the connection status. The most probable scenario for this attack is the following one :
|
|
Solution
01 - Update QuickTime with the 7.4.1 version
02 - Workarounds regarding the QuickTime vulnerability Workarounds on user workstations
|
|
Standard vulnerability IDs
|
|
Additional Resources
|
|
History
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||