Nevis Labs Identifies Vulnerability in Apple QuickTime

Business Wire, March 9, 2007

MOUNTAIN VIEW, Calif. -- Nevis Networks, a market leader in persistent LAN security solutions, today announced that Nevis Labs has identified a vulnerability in Apple QuickTime.

Affected Product/Versions: Apple QuickTime < 7.1.5

Product Overview: QuickTime is Apple's technology for handling video, sound, animation, graphics, text, music, and even 360-degree virtual reality (VR) scenes.

For more information visit http://www.apple.com/quicktime/

Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime, both Windows and Mac. Minor user interaction is required. To exploit this vulnerability, the target must open a carefully crafted .mov file or visit a Web page embedding the malicious .mov file.

The specific flaw exists within the parsing of the size fields in the user-defined UDTA atoms of the .mov files. By setting this field to an overly large value, such as 0xFFFFFFFF, an integer overflow occurs resulting in an exploitable heap overflow.

Successful exploitation results in code execution under the context of the running user.

Vendor Response / Solution: Apple has issued an update to correct this vulnerability. More details can be found at: http://docs.info.apple.com/article.html?artnum=305149

Reference:

1. http://developer.apple.com/documentation/QuickTime/QTFF/index.html

2. http://docs.info.apple.com/article.html?artnum=305149

3. http://secway.org/advisory/AD20060512.txt

For more information: http://www.nevisnetworks.com

About Nevis Networks

Nevis Networks is the cost leader in Persistent LAN Security solutions that protect information privacy and integrity, provide user-based visibility, and maintain regulatory compliance. Nevis' innovative ASIC-based LANenforcer product line integrates pre-connect NAC functionality, with post-connect access control and threat detection, securing the Enterprise at wired, wireless, remote and branch office entry points. Nevis was founded in 2002 by seasoned executives with strong track records in security, semiconductor design, and networking technologies, and has raised over $40 million from veteran Silicon Valley investors New Enterprise Associates, BlueRun Ventures, and New Path Ventures. The company is headquartered in Mountain View, California, with additional R&D centers in Pune, India and Beijing, China.