HTTP: Apple QuickTime JPEG 2000 COD Length Integer Underflow
This signature detects attempts to exploit a known vulnerability in the Apple's QuickTime media player. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Apple QuickTime is prone to an integer-overflow vulnerability due to a failure to properly bounds-check user-supplied data. The problem occurs when handling a specially crafted movie file. Successful exploits may allow attackers to execute arbitrary code in the context of the currently logged-in user; failed exploit attempts may cause denial-of-service conditions. Versions prior to QuickTime 7.7.1 are vulnerable on Windows 7, Vista, and XP. NOTE: This issue was previously discussed in BID 50388 (Apple QuickTime Prior To 7.7.1 Multiple Arbitrary Code Execution Vulnerabilities) but has been given its own record to better document it.
Affected Products
Apple mac_os_x_server
Short Name
HTTP:STC:DL:APPLE-QT-JPEG-2000
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
2000 Apple COD CVE-2011-3250 Integer JPEG Length QuickTime Underflow bid:50401
Release Date
01/30/2012
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3716
False Positive
Unknown
Vendors
Apple
CVSS Score
9.3