Details of VAR-200809-0045

ID

VAR-200809-0045

CVE

CVE-2008-4116

TITLE

Apple QuickTime and iTunes Vulnerable to buffer overflow

Trust: 0.8

sources: JVNDB: JVNDB-2008-003437

DESCRIPTION

Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a long type attribute in a quicktime tag (1) on a web page or embedded in a (2) .mp4 or (3) .mov file, possibly related to the Check_stack_cookie function and an off-by-one error that leads to a heap-based buffer overflow. (1) Web On the page quicktime tag (2) .mp4 Embedded in the file quicktime tag (3) .mov Embedded in the file quicktime tag. Apple QuickTime is prone to a buffer-overflow vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to open a specially crafted file. Successfully exploiting this issue allows remote attackers to cause the affected application to crash. Reportedly, code execution is not possible. This issue affects QuickTime 7.5.5; other versions may also be vulnerable. The <? quicktime type= ?> tag does not correctly handle the long attribute string. If the user uses Quicktime or Itunes media player to open the webpage or . A single-byte heap overflow can be triggered, resulting in a denial of service or the execution of arbitrary instructions

Trust: 1.98

sources: NVD: CVE-2008-4116 // JVNDB: JVNDB-2008-003437 // BID: 31212 // VULHUB: VHN-34241

AFFECTED PRODUCTS

vendor:	apple	model:	itunes	scope:	eq	version:	8.0	Trust: 2.4
vendor:	apple	model:	quicktime	scope:	eq	version:	7.5.5	Trust: 2.4
vendor:	apple	model:	quicktime player	scope:	eq	version:	7.5.5	Trust: 0.3

sources: BID: 31212 // JVNDB: JVNDB-2008-003437 // CNNVD: CNNVD-200809-253 // NVD: CVE-2008-4116

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2008-4116
value:	HIGH
Trust: 1.0
NVD:	CVE-2008-4116
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200809-253
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-34241
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2008-4116
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-34241
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-34241 // JVNDB: JVNDB-2008-003437 // CNNVD: CNNVD-200809-253 // NVD: CVE-2008-4116

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-34241 // JVNDB: JVNDB-2008-003437 // NVD: CVE-2008-4116

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200809-253

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200809-253

CONFIGURATIONS

sources: JVNDB: JVNDB-2008-003437

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-34241

PATCH

title:

Top Page

url:

http://www.apple.com/itunes/

Trust: 0.8

sources: JVNDB: JVNDB-2008-003437

EXTERNAL IDS

db:	NVD	id:	CVE-2008-4116	Trust: 2.8
db:	BID	id:	31212	Trust: 2.0
db:	SREASON	id:	4270	Trust: 1.7
db:	EXPLOIT-DB	id:	6471	Trust: 1.7
db:	JVNDB	id:	JVNDB-2008-003437	Trust: 0.8
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:6113	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:5936	Trust: 0.6
db:	MILW0RM	id:	6471	Trust: 0.6
db:	XF	id:	45311	Trust: 0.6
db:	CNNVD	id:	CNNVD-200809-253	Trust: 0.6
db:	SEEBUG	id:	SSVID-65713	Trust: 0.1
db:	VULHUB	id:	VHN-34241	Trust: 0.1

sources: VULHUB: VHN-34241 // BID: 31212 // JVNDB: JVNDB-2008-003437 // CNNVD: CNNVD-200809-253 // NVD: CVE-2008-4116

REFERENCES

url:	http://www.securityfocus.com/bid/31212	Trust: 1.7
url:	http://securityreason.com/securityalert/4270	Trust: 1.7
url:	https://www.exploit-db.com/exploits/6471	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5936	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a6113	Trust: 1.1
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a7995	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/45311	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4116	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-4116	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/45311	Trust: 0.6
url:	http://www.milw0rm.com/exploits/6471	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:6113	Trust: 0.6
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:5936	Trust: 0.6
url:	http://www.apple.com/quicktime/	Trust: 0.3

sources: VULHUB: VHN-34241 // BID: 31212 // JVNDB: JVNDB-2008-003437 // CNNVD: CNNVD-200809-253 // NVD: CVE-2008-4116

CREDITS

securfrog※ securfrog@gmail.com

Trust: 0.6

sources: CNNVD: CNNVD-200809-253

SOURCES

db:	VULHUB	id:	VHN-34241
db:	BID	id:	31212
db:	JVNDB	id:	JVNDB-2008-003437
db:	CNNVD	id:	CNNVD-200809-253
db:	NVD	id:	CVE-2008-4116

LAST UPDATE DATE

2024-11-23T22:43:11.120000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-34241	date:	2017-09-29T00:00:00
db:	BID	id:	31212	date:	2008-09-24T16:09:00
db:	JVNDB	id:	JVNDB-2008-003437	date:	2012-06-26T00:00:00
db:	CNNVD	id:	CNNVD-200809-253	date:	2009-03-04T00:00:00
db:	NVD	id:	CVE-2008-4116	date:	2024-11-21T00:50:56.397

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-34241	date:	2008-09-18T00:00:00
db:	BID	id:	31212	date:	2008-09-16T00:00:00
db:	JVNDB	id:	JVNDB-2008-003437	date:	2012-06-26T00:00:00
db:	CNNVD	id:	CNNVD-200809-253	date:	2008-09-18T00:00:00
db:	NVD	id:	CVE-2008-4116	date:	2008-09-18T15:04:27.453