Slashdot Mirror

← Back to Stories (view on slashdot.org)

New QuickTime Flaw Bypasses ASLR, DEP

Posted by Soulskill on from the once-more-unto-the-breach dept.

Trailrunner7 writes "A Spanish security researcher has discovered a new vulnerability in Apple's QuickTime software that can be used to bypass both ASLR and DEP on current versions of Windows and give an attacker control of a remote PC. The flaw apparently results from a parameter from an older version of QuickTime that was left in the code by mistake. It was discovered by Ruben Santamarta of Wintercore, who said the vulnerability can be exploited remotely via a malicious Web site. On a machine running Internet Explorer on Windows 7, Vista or XP with QuickTime 7.x or 6.x installed, the problem can be exploited by using a heap-spraying technique. In his explanation of the details of the vulnerability and the exploit for it, Santamarta said he believes the parameter at the heart of the problem simply was not cleared out of older versions of the QuickTime code. 'The QuickTime plugin is widely installed and exploitable through IE; ASLR and DEP are not effective in this case and we will likely see this in the wild,' said HD Moore, founder of the Metasploit Project."

10 of 162 comments (clear)

  1. Quick! by schmidt349 · · Score: 0, Offtopic

    Can someone please print out and mail this article to Alanis Morissette so she knows what irony is?

  2. joder by Anonymous Coward · · Score: -1, Offtopic

    jolines!

  3. Re:ew quicktime? by Anonymous Coward · · Score: -1, Offtopic

    Lately my penis has been getting hard. What does that mean?

  4. Re:Well duh. by Lorens · · Score: 0, Offtopic

    So why aren't people more interested in OS like KeyKOS/Eros/Coyotos/CapROS that are designed to prevent all and any attacks while simplifying programming and maintaining or even increasing usability?

  5. Just get a PC. by Anonymous Coward · · Score: -1, Offtopic

    I got a firewall.
    I got an anti-virus program.
    I got a anti-spyware program.
    I got Firefox.

    What does Macs have?

    Steve Jobs to complain to, but it'll fall on deaf ears as it takes them months to patch anything.

  6. Yuo fa1l it by Anonymous Coward · · Score: -1, Offtopic

    the problems FreeBSD is already gawker AT most Smith only serve

  7. Penny Auction (http://pennyauctioninfo.com) by Anonymous Coward · · Score: -1, Offtopic

    It's definitely perfect post!
    Thanks a ton,
                          Penny Auction!

  8. inFormatived shitshit by Anonymous Coward · · Score: -1, Offtopic

    correct netwoRk United States.

  9. late story by Anonymous Coward · · Score: -1, Offtopic

    jduck comitted this shit and posted it on twitter almost 12 hours ago.

  10. Re:ew quicktime? by Techman83 · · Score: 0, Offtopic

    Offtopic note: Answering slashdot posts whilst taking hell desk calls doesn't always work as expected ;)

    --
    # cat /dev/mem | strings | grep -i cat
    Damn, my RAM is full of cats. MEOW!!