TippingPoint Digital Vaccine Laboratories

Contact Us

Apple Quicktime Image File idsc Atom Memory Corruption Vulnerability

TPTI-08-01: January 15th, 2008

CVE ID

CVE-2008-0033

Affected Vendors

Apple

Affected Products

Quicktime 7.3

Vulnerability Details

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of malformed Image Descriptor (IDSC) atoms. Specifying a malicious atom size can result in an under allocated heap chunk and subsequently an exploitable heap corruption situation.

Vendor Response

Apple has issued an update to correct this vulnerability. More details can be found at:

http://docs.info.apple.com/article.html?artnum=307301

Disclosure Timeline

2007-10-19 - Vulnerability reported to vendor
2008-01-15 - Coordinated public release of advisory

Credit

This vulnerability was discovered by:

Cody Pierce, TippingPoint DVLabs

Published Advisories

TPTI-09-04: Apple

• published 2009-06-02

TPTI-09-03: Apple

• published 2009-06-02

TPTI-09-01: VMWare

• published 2009-04-06

TPTI-09-02: VMWare

• published 2009-04-06

TPTI-08-08: Microsoft

• published 2008-12-09

Upcoming Advisories

Microsoft

• reported 2009-05-11

Sophos

• reported 2009-04-01

Oracle

• reported 2009-03-13

Microsoft

• reported 2008-08-12

Hewlett-Packard

• reported 2007-07-09

Blog Entries

Exploiting MS Advisory 971778 - QuickTime DirectShow Vulnerability

• 2009-06-30 by Aaron Portnoy
• (3 Comments)

What's Worse Than Finding a Bug in Your Apple?

• 2009-06-05 by Rob King
• (2 Comments)

The iPhone 3.0 Conundrum

• 2009-06-04 by Cameron Hotchkies
• (0 Comments)

Authoring a Technical Book

• 2009-06-03 by Pedram Amini
• (2 Comments)

MindshaRE: Finding ActiveX Methods Dynamically

• 2009-06-01 by Cody Pierce
• (5 Comments)