Details of VAR-200505-1215

ID

VAR-200505-1215

CVE

CVE-2005-1248

TITLE

Apple iTunes MPEG4 Parsing Buffer Overflow Vulnerability

Trust: 0.9

sources: BID: 13565 // CNNVD: CNNVD-200505-1040

DESCRIPTION

Buffer overflow in Apple iTunes before 4.8 allows remote attackers to execute arbitrary code via a crafted MPEG4 file. This vulnerability was addressed in iTunes 4.8; all earlier versions are likely affected. Apple iTunes is a media player program. ---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: iTunes MPEG-4 File Parsing Buffer Overflow Vulnerability SECUNIA ADVISORY ID: SA15310 VERIFY ADVISORY: http://secunia.com/advisories/15310/ CRITICAL: Highly critical IMPACT: System access WHERE: >From remote SOFTWARE: iTunes 4.x http://secunia.com/product/2916/ DESCRIPTION: A vulnerability has been reported in iTunes, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to a boundary error within the MPEG-4 file parsing and can be exploited to cause a buffer overflow via a specially crafted MPEG-4 file. Successful exploitation may allow execution of arbitrary code. SOLUTION: Update to version 4.8. http://www.apple.com/support/downloads/itunes48.html PROVIDED AND/OR DISCOVERED BY: The vendor credits Mark Litchfield of NGS Software. ORIGINAL ADVISORY: Apple: http://docs.info.apple.com/article.html?artnum=301596 ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.35

sources: NVD: CVE-2005-1248 // BID: 13565 // VULHUB: VHN-12457 // PACKETSTORM: 37591

AFFECTED PRODUCTS

vendor:	apple	model:	itunes	scope:	eq	version:	4.7.1	Trust: 1.9
vendor:	apple	model:	itunes	scope:	eq	version:	4.7	Trust: 1.9
vendor:	apple	model:	itunes	scope:	eq	version:	4.6	Trust: 1.9
vendor:	apple	model:	itunes	scope:	eq	version:	4.5	Trust: 1.9
vendor:	apple	model:	itunes	scope:	eq	version:	4.2.72	Trust: 1.9
vendor:	apple	model:	itunes	scope:	ne	version:	4.8	Trust: 0.3

sources: BID: 13565 // CNNVD: CNNVD-200505-1040 // NVD: CVE-2005-1248

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-1248
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200505-1040
value:	HIGH
Trust: 0.6
VULHUB:	VHN-12457
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2005-1248
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-12457
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-12457 // CNNVD: CNNVD-200505-1040 // NVD: CVE-2005-1248

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-1248

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-1040

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200505-1040

EXTERNAL IDS

db:	BID	id:	13565	Trust: 2.0
db:	NVD	id:	CVE-2005-1248	Trust: 2.0
db:	SECUNIA	id:	15310	Trust: 1.8
db:	OSVDB	id:	16243	Trust: 1.7
db:	SECTRACK	id:	1013927	Trust: 1.7
db:	VUPEN	id:	ADV-2005-0504	Trust: 1.7
db:	XF	id:	20498	Trust: 0.6
db:	XF	id:	4	Trust: 0.6
db:	APPLE	id:	APPLE-SA-2005-05-09	Trust: 0.6
db:	CNNVD	id:	CNNVD-200505-1040	Trust: 0.6
db:	VULHUB	id:	VHN-12457	Trust: 0.1
db:	PACKETSTORM	id:	37591	Trust: 0.1

sources: VULHUB: VHN-12457 // BID: 13565 // PACKETSTORM: 37591 // CNNVD: CNNVD-200505-1040 // NVD: CVE-2005-1248

REFERENCES

url:	http://docs.info.apple.com/article.html?artnum=301596	Trust: 1.8
url:	http://lists.apple.com/archives/security-announce/2005/may/msg00003.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/13565	Trust: 1.7
url:	http://www.ngssoftware.com/advisories/itunes.txt	Trust: 1.7
url:	http://www.osvdb.org/16243	Trust: 1.7
url:	http://securitytracker.com/id?1013927	Trust: 1.7
url:	http://secunia.com/advisories/15310	Trust: 1.7
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a17304	Trust: 1.1
url:	http://www.vupen.com/english/advisories/2005/0504	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/20498	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/20498	Trust: 0.6
url:	http://www.frsirt.com/english/advisories/2005/0504	Trust: 0.6
url:	http://www.apple.com/itunes/	Trust: 0.3
url:	http://secunia.com/product/2916/	Trust: 0.1
url:	http://secunia.com/secunia_security_advisories/	Trust: 0.1
url:	http://secunia.com/advisories/15310/	Trust: 0.1
url:	http://secunia.com/secunia_vacancies/	Trust: 0.1
url:	http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org	Trust: 0.1
url:	http://secunia.com/about_secunia_advisories/	Trust: 0.1
url:	http://www.apple.com/support/downloads/itunes48.html	Trust: 0.1

sources: VULHUB: VHN-12457 // BID: 13565 // PACKETSTORM: 37591 // CNNVD: CNNVD-200505-1040 // NVD: CVE-2005-1248

CREDITS

Mark Litchfield※ mark@ngssoftware.com

Trust: 0.6

sources: CNNVD: CNNVD-200505-1040

SOURCES

db:	VULHUB	id:	VHN-12457
db:	BID	id:	13565
db:	PACKETSTORM	id:	37591
db:	CNNVD	id:	CNNVD-200505-1040
db:	NVD	id:	CVE-2005-1248

LAST UPDATE DATE

2024-08-14T12:36:32.400000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-12457	date:	2017-10-11T00:00:00
db:	BID	id:	13565	date:	2009-07-12T14:06:00
db:	CNNVD	id:	CNNVD-200505-1040	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-1248	date:	2017-10-11T01:30:05.857

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-12457	date:	2005-05-16T00:00:00
db:	BID	id:	13565	date:	2005-05-09T00:00:00
db:	PACKETSTORM	id:	37591	date:	2005-05-29T20:22:44
db:	CNNVD	id:	CNNVD-200505-1040	date:	2005-05-16T00:00:00
db:	NVD	id:	CVE-2005-1248	date:	2005-05-16T04:00:00