Lucene search
Luigi AuriemmaAnonymousZDI-12-004HistoryJan 05, 2012 - 12:00 a.m.
Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability
2012-01-0500:00:00
Luigi AuriemmaAnonymous
www.zerodayinitiative.com
19
EPSS
0.794
Percentile
98.3%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the JP2Deco component which is used when handling an mjp2 sample. This sample format (JPEG2000) has a required COD marker segment (0xff52) followed by a COD length value. When extracting the contents of this section the application subtracts from this length before passing it into a call to memcpy. A remote attacker can exploit this error to execute arbitrary code under the context of the user.
References
Related
securityvulns
securityvulns
APPLE-SA-2011-10-26-1 QuickTime 7.7.1
2011-10-31 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-20 00:00:00
cvelist
cvelist
CVE-2011-3250
2011-10-28 01:00:00
prion
prion
Integer overflow
2011-10-28 02:49:00
checkpoint_advisories
checkpoint_advisories
Apple QuickTime JPEG 2000 COD Length Integer Underflow (CVE-2011-3250)
2012-05-14 00:00:00
cve
cve
CVE-2011-3250
2011-10-28 02:49:53
nvd
nvd
CVE-2011-3250
2011-10-28 02:49:53
nessus
nessus
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
2011-10-28 00:00:00
openvas
openvas
Apple QuickTime Multiple Denial of Service Vulnerabilities - Windows
2011-11-03 00:00:00
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
2011-11-03 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00