Security alert: QuickTime bug may be used as a vector for attack

Posted by Dave Merten Apple ico Sep 21, 2008 at 12:30pm

imageIntego, a Macintosh security specialist, recently announced that it has discovered a QuickTime bug which may be used as a vector for attack. Apple’s QuickTime, the media software used to play music and movies on Mac OS X and Windows, has recently been update to version 7.5.5, but a serious bug has already been discovered that may be used as a vector for malicious attacks.

Exploit: OSX.Exploit.QT755-1
Discovered: September 18, 2008
Risk: Low

The “” tag fails to handle long strings, which can lead to a heap overflow in QuickTime Player, iTunes, or any other program that attempts to display media using a QuickTime plug-in. This can be a browser, such as Apple’s Safari, Microsoft Internet Explorer or Mozilla Firefox, or, on Mac OS X, could be any program that displays graphics or movies inline, such as Mail, or even the Finder if a user tries to view a file with Quick Look. For now, files which contain offending strings will crash programs attempting to display them, but malicious code could be added to such files, and may be executed with no user interaction, other than an attempt to view a file.

This bug can be remote or local, as QuickTime parses any supplied file for a recognized header even if the header does not correspond to the file type; for example, a malicious user could put XML content in an MP4 or MOV file, or could add a QuickTime media file to a web page which could then cause a browser to crash while executing malicious code.

Intego’s Virus Monitoring Center is keeping a close eye on this bug and whether malicious users are attempting to add payload to QuickTime files. Intego will naturally update the virus definitions for Intego VirusBarrier X5 if this occurs. Intego will be posting more information, as it becomes available, on the Intego Mac Security Blog.

image“Macsimum News” is a proud supporter of Planet Gumbo, which feeds the hungry. We urge you to help them in their efforts.



Leave a comment ⇒
Please post the article topic & comment in our forums. No registration required.






Article Information

Comment on this Article Print this Article Email this Article Digg This

Contributor

Contributor

Dave Merten

Dave was one of the founding guides at ‘The Mining Company,’ now known as About.com, in February 1998. Dave was their ‘Focus on Mac Support’ guide. In 2004 he started ‘G5 Owners Support Group,’ and in 2005, renamed it ‘Mac Owners Support Group.’ In 2006, he started the ‘MacOSG Support Corner’ column here at Macsimum News.

View Dave Merten's Articles

Recent Articles

Macsimum iPhone Video: Speed Test - iPhone 3G S vs. iPhone 3G vs. Plam Pre
Happy 4th of July weekend! (2nd annual virtual fireworks)
‘The Tech Night Owl’ looks at PR Mac, new MacBook Airs, more
One person shot at Apple retail store in Arlington, Virginia
iPhone 3G S ‘cleans up’ in Japan’s smartphone market
The Mac Night Owl: ‘The Mac Hardware Report: no more price cuts for now’
iHanWel releases iDay Deluxe 2.3 for the iPhone, iPod touch
MacOSG: How to monitor iPhone/iPod touch power consumption
eMedia Music to distribute Guitar Lab instructional DVDs
BagAmp portable amplifier system announced
Ngmoco releases Rolando 2 for iPhone, iPod touch
FlashVideo Converter for Mac OS X gets improved FPS settings
Mac cloner Psystar says it’s ready to leave Chapter 11 bankruptcy protection
Apple exempt from China’s Internet filtering mandate?

Milebug 1.4 released for the iPhone, iPod touch
Sonnet announces price cut on Tempo SATA Pro ExpressCard/34
Big Nerd Ranch Europe offers iPhone Bootcamp in September
TeamViewer Manager now available for Mac
Trampoline and Dock Gone join the latest MacBundle
NMobile speed trap app for iPhone launches at no cost


Hotel München