Информационная безопасность
[RU] switch to English


Многочисленные уязвимости в Apple QuickTime
дополнено с 2 июня 2009 г.
Опубликовано:4 июня 2009 г.
Источник:
SecurityVulns ID:9953
Тип:клиент
Уровень опасности:
7/10
Описание:Переполнения буфера и повреждения памяти в PICT, CRGN, FLC, PSD, AVI, Sorenson Video 3, JPEG2000.
Затронутые продукты:QUICKTIME : QuickTime 7.6
CVE:CVE-2009-0957 (Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 image.)
 CVE-2009-0954 (Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie file containing crafted Clipping Region (CRGN) atom types.)
 CVE-2009-0953 (Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.)
 CVE-2009-0952 (Buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted compressed PSD image.)
 CVE-2009-0951 (Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC compression file.)
 CVE-2009-0188 (Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file.)
 CVE-2009-0185 (Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted MS ADPCM encoded audio data in an AVI movie file.)
 CVE-2009-0010 (Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7, and Apple QuickTime before 7.6.2, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a crafted 0x77 Poly tag and a crafted length field, which triggers a heap-based buffer overflow.)
Оригинальный текстdocumentRoee Hay, Advisory: Apple QuickTime Image Description Atom Sign Extension Memory Corruption (04.06.2009)
 documentZDI, ZDI-09-030: Apple Quicktime PICT Opcode 0x71 Heap Overflow Vulnerability (02.06.2009)
 documentZDI, ZDI-09-029: Apple QuickTime Jpeg2000 Marker Size Heap Overflow Vulnerability (02.06.2009)
 documentSECUNIA, Secunia Research: QuickTime Sorenson Video 3 Content Parsing Vulnerability (02.06.2009)
 documentSECUNIA, Secunia Research: Apple QuickTime MS ADPCM Encoding Buffer Overflow (02.06.2009)
 documentZDI, ZDI-09-028: Apple QuickTime CRGN Atom Parsing Heap Buffer Overflow Vulnerability (02.06.2009)
 documentZDI, ZDI-09-027: Apple Quicktime PICT Opcode 0x8201 Heap Overflow Vulnerability (02.06.2009)
 documentZDI, ZDI-09-026: Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability (02.06.2009)
 documentZDI, ZDI-09-025: Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability (02.06.2009)

Многочисленные уязвимости безопасности в Apple iTunes
Опубликовано:4 июня 2009 г.
Источник:
SecurityVulns ID:9960
Тип:удаленная
Уровень опасности:
7/10
Описание:Переполнения буфера при обработке URI различных протоколов.
CVE:CVE-2009-0950 (Stack-based buffer overflow in Apple iTunes before 8.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an itms: URL with a long URL component after a colon.)
Оригинальный текстdocumentDVLabs, TPTI-09-03: Apple iTunes Multiple Protocol Handler Buffer Overflow Vulnerabilities (04.06.2009)
Файлы:Exploits Apple OS X iTunes 8.1.1 ITMS Overflow (metasploit)

Повреждение памяти в xterm под Apple Mac OS X
Опубликовано:4 июня 2009 г.
Источник:
SecurityVulns ID:9961
Тип:клиент
Уровень опасности:
6/10
Описание:Целочисленное переполнение при обработке управляющей ESC-последовательности CSI[4.
CVE:CVE-2009-1717 (Integer overflow in Terminal in Apple Mac OS X 10.5 before 10.5.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted size value in a CSI[4 xterm resize escape sequence that triggers a heap-based buffer overflow.)
Оригинальный текстdocumentDVLabs, TPTI-09-04: Apple Terminal xterm Resize Escape Sequence Memory Corruption Vulnerability (04.06.2009)

DoS против CUPS
Опубликовано:4 июня 2009 г.
Источник:
SecurityVulns ID:9962
Тип:удаленная
Уровень опасности:
5/10
Описание:Обращение по нулевому указателю при разборе тэга IPP_TAG_UNSUPPORTED
Затронутые продукты:CUPS : cups 1.1
 CUPS : cups 1.3
CVE:CVE-2009-0949 (The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.)
Оригинальный текстdocumentDEBIAN, [SECURITY] [DSA 1810-1] New cups/cupsys packages fix denial of service (04.06.2009)
 documentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2009-0420 - Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability (04.06.2009)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород