Security testing
Scanit offers penetration tests, vulnerability assessments and web application audits.
Learn ethical hacking.
Scanit offers 5-day training on ethical hacking.

Apple QuickTime MOV file JVTCompEncodeFrame heap overflow (CVE-2007-2295)

Description

Apple Quicktime is an media player supporting various audio and video formats. A heap overflow vulnerability exists within Apple Quicktime 7.1.6 and all prior versions when processing a malformed .mov file. When processing a malformed .mov file, the JVTCompEncodeFrame () function incorrectly parses the malformed data and causes the application to segmentation fault. This may allow for an attacker to cause the application to stop responding, and or to execute arbitrary code within the context of the logged in user.

This is an arbitrary code execution vulnerability. It means that it can be used to place a backdoor, a virus or spyware on a vulnerable computer.

Recommendations

If possible, upgrade to QuickTime 7.2 or later. QuickTime 7.2 is available for Apple Mac OS X v10.3.9, Apple Mac OS X v10.4.9 or later, Microsoft Windows Vista, and Microsoft Windows XP SP2. QuickTime 7.2 is available from Apple QuickTime Download

If QuickTime 7.2 or later is not available for your system, consider disabling QuiickTime in your browser. Take care not to play files that came from untrusted sources.

References