HTTP: Apple QuickTime and iTunes Heap Memory Corruption
This signature detects attempts to exploit a known vulnerability in Apple QuickTime and ITunes. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the process's user.
Extended Description
A heap-based buffer overflow vulnerability has been reported in Apple QuickTime and iTunes. This issue affects both Mac OS X and Microsoft Windows releases of the software. This issue may be triggered when the application processes a malformed movie (.MOV) file. Successful exploitation will result in execution of arbitrary code in the context of the currently logged in user. This issue affects Apple QuickTime 7.0.3 and iTunes 6.0.1. Earlier versions may also be affected.
Affected Products
Apple quicktime_player
Short Name
HTTP:STC:STREAM:QT-IT-MEM
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Apple CVE-2005-4092 CVE-2016-1848 Corruption Heap Memory QuickTime and bid:15732 iTunes
Release Date
09/28/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Free-codecs.com
Apple
CVSS Score
7.5
6.8