PDA

View Full Version : Researcher finds new flaw in QuickTime for Windows



OMEN
04-29-2008, 12:39 PM
Petkov locates another one, but so far no known exploits
A security think tank says it has found a vulnerability in Apple Inc.'s QuickTime multimedia player that can be exploited remotely to compromise Windows Vista PCs upgraded to Service Pack 1, as well as those with Windows XP SP2.

According to the scant details published on the GNUCitizen blog, the exploit involves a maliciously crafted media file. When a user opens the file, which can be hosted on a Web site, the vulnerability in QuickTime allows the hacker to take complete control of the machine, according to Petko D. Petkov, known to the hacking community as "pdp."

Petkov doesn't think users are in danger of being attacked as of yet.

"I highly doubt that anyone knows how to exploit this vulnerability," Petkov said. "I haven't shared the details with anyone, and the actual vulnerability is different enough to be rather challenging for even some of the most gifted hackers out there."

In a video with a thumping techno beat, Petkov shows a QuickTime file sitting on the desktop of a PC running XP SP2. When a user opens the malicious file, Petkov is then shown to have control of the PC -- the evidence that he has control comes from the fact that the applications Paint, Calculator and Notepad are seen launching, apparently without further user intervention. The demonstration is repeated on a PC running Windows Vista inside a virtual machine.

More and more hackers are turning to exploiting vulnerabilities in applications as a means of launching attacks, since it's becoming increasingly difficult to find problems in operating systems, Alan Paller, director of research for the SANS Institute, said last week at the Infosec conference in London.

Petkov said Monday that he has notified Apple of the problem.

The company did not respond to a request for comment.

QuickTime has proved to be one of the more porous applications. Apple, which doesn't have a regular patching schedule like Microsoft Corp. does, patched the application for at least the sixth time earlier this month, fixing 11 vulnerabilities.

IDG