Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


QuickTime Movies Are Vector for System Hijacks



 By: Lisa Vaas
2007-07-12
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
There are eight security flaws that allow tainted QuickTime movies to lead to sensitive information being stolen.

Tainted QuickTime movies can get a system hijacked or lead to sensitive information being stolen due to eight security vulnerabilities in Apples movie-viewing software.

According to Apple, the first problem is caused by a memory corruption error when processing a malformed H.264 movie. H.264—also known as MPEG-4 Part 10 or AVC (Advanced Video Coding—is a standard for video compression.

If a user were to view a bogus H.264 movie, it could lead to either the application quitting or a targeted system being laid open to arbitrary code execution.

Resource Library:
The second vulnerability is caused by a memory corruption error when processing a malformed movie file, which could be exploited by attackers to execute arbitrary code by tricking a user into opening a malicious file, the Cupertino, Calif., company said July 12.

Another QuickTime bug involves the handling of .m4v files and also may lead to unexpected application termination or arbitrary code execution. The problem is an integer overflow vulnerability.

QuickTime also has a problem with handling SMIL (Synchronized Multimedia Integration Language) files that again could lead to system takeover. SMIL is a W3C-recommended XML markup language for describing multimedia presentations. This, too, is an integer overflow issue.

QuickTime for Java is the source of a fifth issue. This problem, which is a design issue, could allow disabling of security checks so that a victim can be lured into visiting a site that serves up a malicious Java applet. After that, an attacker could take over the targeted system.

The sixth issue is also a design error in QuickTime for Java that can be exploited by malicious Java applets to bypass security checks and read and write process memory, leading to arbitrary code execution.

Click here to read more about Java security problems found in QuickTime.

The seventh issue is yet another design error in QuickTime for Java. This one involves certain interfaces being exposed by JDirect, a Java-to-native library. Again, the risk boils down to system takeover, according to Apple.

The eighth vulnerability is also caused by a design error in QuickTime that could be exploited by attackers to capture a clients screen content by tricking a user into visiting a specially crafted Web page.

Apple has issued an update, QuickTime 7.2, to fix all of these security problems. It can be obtained from Apples downloads site or via Apples automatic software update.

For more details, check Apples product security site.

Check out eWEEK.coms Security Center for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEKs Security Watch blog.



  Reader Comments: QuickTime Movies Are Vector for System Hijacks
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Lisa Vaas
 


x}ks㶲*Q3Co{)ْ:-K3ΤJKĘ"uH%{rkĹ;ؖ4F{{~$rɅkmJ9;D{{}.ЇP|oSo92t=z#m)>M3ة 5w5Gl&J{'AT{j xL5uΚ}ٚc7h2 X m$(rڀ'jZw6(CLeH.( f_ږyD6GH;*C7ܩx8ս/DeO؀IQIM"h4"j>wn3gGdYg3 (ƻf {iZdh-vu H>`7sIzV@h ɠæ&q!_Cp`eF #Ϟ~b[>4 :]fu~ƷP7nǞ;wC27 vQKvTmCO|lMݟP~ $"9ˡ,ft 2n dþ=RUP)kJv-t}r_,Te,oF}sj.z `|`h-vu]+h5u=;yظ} Vb}" @D%\.I"0i5&ttXOB^ $9@FI?jjkMюR=2,g fV҈ 'UUjH,ǝq%?Zڗu&u}X&ZhCA+teP9m<]rt.[ݛ9^VSCR=BCj`BӹciquUo~nvO^/SQ&:aZ+U#1?_$>wNHN‰,-YtǷPZ,/s$dBrZT|Y|ěy30si2).ߦIw[ atBjm҄& )B:%uWϝ5>Hr Ca)#8?%Wi8@r5)6K .7R<?o dz!CCZ9nVȨUSA%EI7CD r23~B(PHQ>z%Kus7p@WMCrjNTʊ0Wr{gH .uƍv"e.ڽ^CT364>P ,I!eݴ%稫V)b1x+%YE*GX8ʍ??1m!SGñA 3&M:vٗ`: 0hvz?>RӚOCqOCGs>2胎6ml8-ƙ" ,70}HOQI$wX(=sO6%H_¤>< )gV=H:}m`5$ǎC-ߟLs#09w ښB<Q5ݻCi`y1yjS?g!Tg,zzC 3_)nвc@uK\w;u@sރn5 ~"W޳'6`FUMR|%t|9Ꭴm[4@~)&]LqαrB&k:H(X3b-yrpm ֌M'WRֹ{|))kb*q (tzS\O &ō$)ЊOW}lTo-V,~%fsP*+ӺZjp ~V7Bɶ/²xcP66R(kυ5Ӳ =2P" Cx EO-iMfSkm _&TYWӟ@tX)Z%a5sV@6d@7h`M DlVCax5Zz' <> 7=`:0TN#}0 l1ZJkX$ M=̔:Y[ 3$2.|N\+bЁ*8ttf0읶Wׅ])ϥ_(ͧ6v&9Je!6#{e/6!&]1W=PZ`!?RP$ q/#Y /9m0ܑk}6bDugAPl>-D.,g \jpj Zqq~~~0,]y.|}uVN0\}єa˘;|q6m*IH砉bAQ OkMf٧gL䱯3 h0ҁq_HEy[pp\U.(L,:j1-[ Hg [QzoSCzoA$zK& GpӞrVyCY?Oy4T+BZ= QQT*Ps)'@S$f5`w4ڗ'_~62Msg67_0t*tɕ`s| )& Lt0Ȑ%=WlThm3܁c2P>H(Tg7gME]ac6U{zn&)Z-MӓU;4 O|>67/=Od<9E7"=_`%SQl7xv@̬}#u6霎0L M<G\մRb/Y` s*? a,0t&l\X碊IE>_e7UVY<{4%<jԹl9$#?\w?^ECM q ߲oSR=H3 J@cG$=ĸ9}/gvjZ56|v> 72DH4|w/ΥI{͏e[J:^w9"!5;.YG^99o7M1&05h!4|yQG$M "a]Zqn} zsH&iR'DZ3pq*h hw@lb%%hҫoeW!؉\lj9l0 Zta^CrWkb~]ȩZU$}ݝ:V08FHS `/#9ʼSsaZ GW ./vgNȣ&k{?d̎%Ƅ{@95Zkѧt n ~]ު9EqXx,3uTAv,x\=[<,Mw[1'~4/?@ 6W{$ N޼=FoQP]9Yz$AC~glr¸Eۨ+=l[dؗ{qOKn4]9n萧Usd{I2ӱ$BUUk ۻʾZEVeΜtٓ^t;>rix7Yu (f~X:pOʤsc}d<ݸw[f1rfeo}|} ~ ]=PI=w뻿~=Ғ(r_&ZD Npw5Q{qI9.x}?,s`\TzH^8؈ڃ}uU6m>=-35"i ј@.mvx1tY AAXy !h79g; 91<O$F[euw+[c“gD`GHA|缩gA jm9gitpUE0p17$8\}1ߊ:"Y1!Qfm!ZP|=ߎ93{K8j R*2Kp1)%`PBH|o4y˭0L L ܻ'Vxe[b[0| NKֈe[a32O2Yf]-*|X`ˤ~[bNO^>K=| 8onqUEB= g=黤5`.2Rөܶ@ YC<FsDRU JMzܟEݶ3?tEex1 M39q=ԲRŽRr3''0 $&tEA۶I<-{>P~!"zrG{YiYȕ0u$ڮo@ %<,&%sǐMe"b.#W'Fo>S(Kw2g@½Wt)_j9ny^J q  &[L,&,ʰidP﮶[YMh4q9nڜh׆.5+C(|*(rS" * /US,VbgL$GJ^I?xDV ^\V{ɩܒJ}ۧURVi,i6dRcHHnj.QKL<A*SzmF#j 1aԗuP"Ϝq̰PZpi*(kj_~vuOx9MzW3f uk'짹 |qQIpP" 30R^쎈;;T¶$U~!seqݙkvANo8111(_>}i(܉Jjg>ΰ[swʱA1wnX*{uQC GVuySP@으ky̕'mq7777K3xbyνĦԢwvgymJ~_u^H 187%5@GO+MWt61'E,aY4SE <+G%U=H)=_nJ5 mx Idʓt_9.^D)ͅH-ry̮){v;aY=<$ف0KY,M:0IcM|%z{iE+'d[泹+? T;eńJg`|K7r p6b',*AE/> s#)x[س>1? \ !:Ugu[^HavL ˙ le aAr3JѪω%X4Vzi%%fL ]0DD}⁄ lMJ@vb롻ڊYHD5`K*|6ǫ_̐ MKeX4̵D >^y-*pQE'rl.O, Eq #m~w)RߚiIaͿ~D+VLnC GyTE%=<(e]qp^9אk˿q[Kjg[&$͇!@B&GY!أao;ƶ5_޴?KxpS˞JM0MI"n`㋄jfx˻ ˵:M#ܰfSL oCH ~xá>47y5t6TF #nR4tmS`4hgqB8PB! P"#.oRk{V1rW'9u\˓.Oo3i}AI y+1ge䍝WIC! ؍!Wre5ܤI\%\OԼa't{c*BEPTLNPsoYmq+6ζ46=5SUПώsC.VH*ұN/ V@KLa k hB$H8DA$ τȈz,>}s0̩q:4ڗq$4Un VwP)}JxHܱˍT]K/~(eܽ4u`΀^WPjoR;ߚ'409HY78eִfgf5Nocxm&]$5?h۾a+mն-1iċR{8L m~[~GԽ+ٽfTWg4Z֝%:6 d&pj6_fؐ)l%"Q0MCaqX3>/ 3$Xy"H+tz`]gӏp sZ'|OT/Ym/4ӏ=[?,&_U$lrw2$o7M [{8S[xz1 C1P1Ӱ0&uS\ʷ;CӸl`Ztq"o(KkʁV=P, xA߸֊[N۠iΞCm,%f| +4Ґtr'u8xz<~"x?q) ߥe*|2nfSx)e vf4}Su&.0[{菉yD= ? KD)`G%|];B~3 t'8~/$j~h!W:K'8-xQ)X.^towN @v7xrw]"X++F]{N9-0 ~;T8K[,z+pf$5d _M ,ba$)ȁ;[ (яT.,=1[>%V8E |)96)2%$&Jjid}$FtyϽgDhG꨺\[a0։_UV&gB8AXJrXD ŇҀ "K&5\qy3Mu{ea1fSYh9=R!ncb9zj\(.IQ:-~e=_@FrƄFWe:-0j". JD-~0+h1g >)fF<Lຶ`;bwT=VڹZqwzRKo^;g!Hs567ںs)yrjLxaE8a c9T8΅En#x2lSKaZ$~TRus J"̶aB RR,Cy^)cWVRѪErrCcaV\k \=}3P=Ӓ"QGl;TҊj95 4T`y/1qr}K;TQ`o3cN'||t|3z9}Z<ۭ|컣bLl!7|%5Fo[q{e>:b)ӹ/0۱px6-Rý<HPYk:ǏyX^K\aeI,&Yqۏo[ͳ.0Ha1q2 @Lwtc0ht ތjg~RߊMX{0W0r-x+jO5 -W(g`,lZ3ZNphu!,.?_!ƘCQ/@@L%F J 47#\CP |P-S7Wq+PUGoh}exx3J"r[- iZc:&0* >'wA>po<|SPʕU+%=Lhp ̋XH t4*$:km;=~yLRO= N9ǃ"Ba=X@:>IoH&]U# `xIFzhvew= d!/9k `{.AB/8 SD@0 u'+JAW)ntA,0v# C^!W馾!sSy-r)G-[޾Ԕ1";'0ឩV1,2)kM(qik80"(S[]ă0>]q(OpWYNL@ S+fɻ3:rtT(ʁ2|{C@ussSRS¤vxX-><' .yHcI 8^iN4X+l7,2| =<RXX_1[> MꪂOJ 2,=VR"c<>A~guEp HD+^@03:%_Ч6#k;h^]&k$6}<\w%9nwo`oė;u|ҽ|ڹl_]w.Ʃ&hT/湾xQ(Xl %e9ũ_B*r4,xy^ϊ>M#ZGa?)Qe;̋ Q~4A/̆7[vec+t?gg:^Z3rROmj7~V CK=W܄qP ">^sФo%u@?CBP~ (By7)8h3Ods)4?2#\~5:;\(u2eF9{ϽPys9?πڮq1?0_,ߋ ^~.2sE}^}^d'e/?A3(?(#/2a~/32.a.3 f ! _ *>~3eeϠ/P@_3*}'ߧ @MV9M@7d_RIRf5pvJEsQ^53Ty~)P5(ϐge3Vڍna{r!gˀ^ kJ+ťW*7YKxM}%k{[F1nvd ba 5KPe^ۛTRCGPYpKxEó##htoĶ.p&}:=Wv l+Jy._[nNJ>S\ȜHqi@BvD4{HO8=\zI[F$Qf =W]6pqSn$oY 5O+v7#&7Sw..pyk;ُϋGkwյq@5Af_b 5y?'OxVf2j{$oqAzח17>RqFPg^u= :!:i>"h}k:KdB'pZc(fZ gˌ)螉#+ 7\z8,@7OZ'|(VT+[-WJr=DDã*R%}e`R++ QPफ़h[iRo視 yVi8an%[z"z%~@-H1_,mRfP6սD<'M~ m

oٔ^^C>N*˗ X627 k`V{/؜['lybb)mTv:98x[m:~H-6;$} F(r>t^F`˫iBO^2pI{׻80~.YI(q0)SփݍΊߚqe0,,]3&2 /çn3 &`T |5h_u$r V$Ƕ1x_05:0Ϋ(rq$fPwwZNe5Xru;ݹ c@-ݡ Ƕt1o6gG=םېŚ뺺upɯOۍvMul$2ާ|1'A:༓H_`'#e#RG0MDkfAl! |n9/,_<^,yC͞3)D_&dOW[l,)1 {;sH.ZԿs߿.$/]N;SNdWಁe":} S sgTt|!,ڍN-Gw U|ٱs9ebV)qdGkN<}71=ڢ u+ ğ? \ cwHVxCO1ΪTU|>cxH^ʶ7 %w1Y=_v{[=/'R`n)ZF$c-ԭ典<P0߀~C.vQeNܔMF.D]hT)*ʢ6M /ߵ3qݼg®,K}Gȅnl`Txq;s_08V0|6,lp/>CwϏp`2[]g4^NpA&}k\,,L[뙗Z']Y!hXj=E"ҁ )Q~)'fK#fY1[Rj`n~ӧ4pRaL (b[иY;PE"1ԛa:(z0 x5nBO\3L&j1Bi>e12޳`=dZ>]x O!gWP Y-f1!Dv88)ҡCCĞR!*aڇl*~H&3l{+нD~xFs-^8Q> χ"@LNENE<<*IDy)V@ Og |>":xqea@T,7+c~ <^E!$g~V;~v?;u~m a% ѨT\ߴ;kO,ںqK'?~lIaEyiAђu׭vH]5[dEg0]\}!l6/⍿#014[3ˬZY$IL#;ov[b$- U.IM)V []jqۙ QBlS2u̹D/5^JB\sjHէr0>d֊֎Mӝo3a-dcˤ_ l?:݁$)