漏洞信息详情
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime UDTA ATOM整数溢出漏洞
- CNNVD编号:CNNVD-200703-168
- 危害等级: 高危
- CVE编号: CVE-2007-0714
- 漏洞类型: 数字错误
- 发布时间: 2007-03-05
- 威胁类型: 远程
- 更新时间: 2013-01-10
- 厂 商: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
- 漏洞来源: Sowhat※ smaillist@...
漏洞简介
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple QuickTime是一款流行的多媒体播放器,支持多种媒体格式。
QuickTime在处理特制的MOV文件的UDTA属性时存在整数溢出,远程攻击者可能利用此漏洞通过诱使用户打开恶意MOV文件导致Quicktime崩溃。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接: 临时解决方法:
如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
* 在IE中禁用QuickTime ActiveX控件,为以下CLSID设置kill bit:
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}
{4063BE15-3B08-470D-A0D5-B37161CFFD69}
或者将以下文档保存为.REG文件并导入:
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}]
"Compatibility Flags"=dword:00000400
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4063BE15-3B08-470D-A0D5-B37161CFFD69}]
"Compatibility Flags"=dword:00000400
* 对基于Mozilla的浏览器禁用QuickTime插件
* 禁用QuickTime文件的文件关联,删除以下注册表项:
HKEY_CLASSES_ROOT\QuickTime.*
* 禁用Javascript
厂商补丁:
CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
-----
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/quicktime/download/mac.HTML
http://www.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/quicktime/download/win.HTML
参考网址
来源: TA07-065A
名称: TA07-065A
链接:http://www.us-cert.gov/cas/techalerts/TA07-065A.HTML
来源: VU#861817
名称: VU#861817
链接:http://www.kb.cert.org/vuls/id/861817
来源: SECTRACK
名称: 1017725
链接:http://www.securitytracker.com/id?1017725
来源: VUPEN
名称: ADV-2007-0825
链接:http://www.frsirt.com/english/advisories/2007/0825
来源: SECUNIA
名称: 24359
链接:http://secunia.com/advisories/24359
来源: docs.info.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com
链接:http://docs.info.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/article.HTML?artnum=305149
来源: XF
名称: quicktime-udta-atoms-overflow(32819)
链接:http://xforce.iss.net/xforce/xfdb/32819
来源: MISC
链接:http://www.zerodayinitiative.com/advisories/ZDI-07-010.HTML
来源: BID
名称: 22844
链接:http://www.securityfocus.com/bid/22844
来源: BID
名称: 22827
链接:http://www.securityfocus.com/bid/22827
来源: BUGTRAQ
名称: 20070307 ZDI-07-010: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime UDTA Parsing Heap Overflow Vulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/462153/100/0/threaded
来源: BUGTRAQ
名称: 20070306 CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple QuickTime udta ATOM Integer Overflow
链接:http://www.securityfocus.com/archive/1/archive/1/461999/100/0/threaded
来源: MISC
链接:http://secway.org/advisory/AD20070306.txt
来源: OSVDB
名称: 33902
链接:http://osvdb.org/33902
来源: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
名称: CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple-SA-2007-03-05
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/Security-announce/2007/Mar/msg00000.HTML
来源: FULLDISC
名称: 20070306 CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple QuickTime udta ATOM Integer Overflow
链接:http://archives.neohapsis.com/archives/fulldisclosure/2007-03/0003.HTML
受影响实体
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime:6.1.0:-:Windows
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime:7.1.4:-:Windows
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime:7.1.3:-:Windows
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime:7.1.2:-:Windows
- CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple Quicktime:7.1.1:-:Windows
补丁
暂无
评论