Apple QuickTime Player for Windows Long URL Overflow

2003-03-31T00:00:00
ID OSVDB:10561
Type osvdb
Reporter Texonet()
Modified 2003-03-31T00:00:00

Description

Vulnerability Description

A local overflow exists in Quicktime Player for Windows. The program fails to validate long quicktime:// URLs resulting in a buffer overflow. With a specially crafted request, an attacker can cause the program to crash or execute arbitrary code resulting in a loss of integrity, and/or availability.

Solution Description

Upgrade to version 6.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

A local overflow exists in Quicktime Player for Windows. The program fails to validate long quicktime:// URLs resulting in a buffer overflow. With a specially crafted request, an attacker can cause the program to crash or execute arbitrary code resulting in a loss of integrity, and/or availability.

Manual Testing Notes

quicktime://127.0.0.1/AAAA...

Where the character 'A' is repeated 400 times.

References:

Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0166.html ISS X-Force ID: 11671 CVE-2003-0168 CERT VU: 112553 Bugtraq ID: 7247