Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
Home  Ask the Team  Mailing Lists  Advertising Info  Advisories  About SecuriTeam  Blogs Brought to you by: Suppliers of: Website Testing Tools Network Testing Tools Software Testing Tools SecuriTeam in Your Inbox New vulnerability? New tool? Tell us (Our PGP key). Cyber Int USA June 18 HackInParis June 23 SANS Discount: SecuriTeam5_SANS Subjects of Interest: Vulnerability Management SQL Injection Buffer Overflows Active Network Scanning Fuzzing Fuzzer Report Network Security Network Scanner Pen Testing Security Scanner Scanner Review Fuzzer Review Web Scanner Review	Apple QuickTime H.264 Nal Unit Length Heap Overflow Vulnerability 11 Sep. 2009    Summary This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.   Credit: Free Website Security Scan Free Fuzzer Report Vulnerability Assessment Detect web app vulnerabilities University study comparing the top Accurate and automated scanning Get guidance from professionals. 6 commercially availble fuzzers. for networks of any size.    Details Protect your website! Free Trial, Nothing to install. No interruption of visitors. www.beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Apple Quicktime This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists during the parsing of samples from a malformed MOV file utilizing the H.264 codec. While parsing data to render the stream, the application will mistrust a length that is used to initialize a heap chunk that was allocated in a header. If the length is larger than the size of the chunk allocated, then a memory corruption will occur leading to code execution under the context of the currently logged in user. Patch Availability: Apple has issued an update to correct this vulnerability. More details can be found at: http://support.apple.com/kb/HT3859 CVE Information: CVE-2009-2799 Disclosure Timeline: 2009-07-28 - Vulnerability reported to vendor 2009-09-10 - Coordinated public release of advisory -------------------------------------------------------------------------------------------------------------------------------- Learn how website security by scanning is reducing the risk of vulnerabilities like this. -  Comments: blog comments powered by Disqus	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles ZIP With Pass For Android Remote Path Traversal File Overwrite Vulnerability VMware Multiple Products Invalid Port Handling Local DoS Vulnerability SyncEvolution /src/syncevo/installcheck-Local.sh Multiple Local Symlink File Overwrite Vulnerability Red Hat CloudForms Management Engine Destructive Action Request Protect_from_forgery Mechanism Bypass CSRF Vulnerability Oracle Java JDK / JRE Security Component XML Document Canonicalization Sandbox Bypass Vulnerability Oracle Java JDK / JRE / JRockit 2D Component Layout Lookup TTF Font Parsing Remote Code Execution Vulnerability Oracle Java JDK / JRE CORBA Component Stub Factories Permission Handling Information Disclosure Vulnerability Movable Type Rich Text Editor Multiple Stored XSS Vulnerability MediaWiki PdfHandler_body.php Remote Shell Command Injection Vulnerability Linux Kernel /drivers/net/wan/farsync.c Fst_get_iface() Function Local Kernel Memory Disclosure Vulnerability JustSystems Sanshiro File Parsing Arbitrary Code Execution Vulnerability HIOX GUEST BOOK /HGB/add.php Multiple Parameter XSS Vulnerability General Electric (GE) Fanuc Proficy HMI/SCADA IFIX External Media Autorun Environment Protection Bypass Vulnerability Erlang/OTP FTP Module Multiple Function Command Injection Vulnerability Dell KACE K1000 /userui/ticket.php ID Parameter SQL Injection Vulnerability Cubic CMS /login.usuario Multiple Parameter SQL Injection Vulnerability Conceptronic C54APM Goform/formWlanSetup Wlan-Url Parameter Reflected XSS Vulnerability Command School Student Management System /sw/admin_school_names.php Id Parameter SQL Injection Vulnerability Command School Student Management System /sw/admin_grades.php Id Parameter SQL Injection Vulnerability CentralAuth Extension For MediaWiki /CentralAuth.i18n.php Username Information Disclosure Vulnerability  Featured Articles General Electric (GE) Fanuc Proficy HMI/SCADA IFIX External Media Autorun Environment Protection Bypass Vulnerability Red Hat JBoss Portal GateIn Portal Improper URL Escaping Multiple Reflected XSS Vulnerability D-Link Multiple DSR Routers /scgi-bin/platform.cgi Password Field SQL Injection Authentication Bypass Vulnerability Triangle Research International Internet TRiLOGI (i-TRiLOGI) Server Local Unauthorized User Creation Vulnerability HP Officejet Pro 8500 XSS Vulnerability Cisco Security Monitoring, Analysis And Response System (CS-MARS) /Query/NewQueryResult.jsp IsnowLatency Parameter XSS Vulnerability Barracuda SSL VPN 680Vx showAuditReports.do Multiple Parameter XSS Vulnerability OpenNetAdmin /ona/dcm.php options[file] Parameter Traversal Local File Inclusion Vulnerability Siemens WinCC (TIA Portal) HMI Panel Arbitrary Site Redirect Vulnerability Fortinet Multiple FortiGate Firewalls Multiple Function CSRF Vulnerability Cisco Identity Services Engine Request Submission CSRF Vulnerability Mobile Atlas Creator (MOBAC) Atlas Map Name XSS Vulnerability MachForm view.php File Upload Arbitrary Code Execution Vulnerability Alcatel-Lucent Multiple OmniTouch Products MyTeamWork Service User Bookmark XSS Vulnerability Siemens WinCC (TIA Portal) HMI Panel CSRF Vulnerability Apache Struts DefaultActionMapper Multiple Prefixing Parameters Arbitrary Site Redirect Vulnerability GNOME file-roller fr-archive-libarchive.c extract_archive_thread() Function Crafted Archive Traversal Arbitrary File Creation Vulnerability Symantec Security Information Manager SQL Injection Vulnerability Corel PDF Fusion wintab32.dll Path Subversion Arbitrary DLL Injection Code Execution Vulnerability OpenX /admin/plugin-settings.php group Parameter Local File Inclusion Vulnerability
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®