Home > slashdot > New QuickTime Flaw Bypasses ASLR, DEP

New QuickTime Flaw Bypasses ASLR, DEP

August 30th, 2010 08:15 admin Leave a comment Go to comments

Trailrunner7 writes “A Spanish security researcher has discovered a new vulnerability in Apple’s QuickTime software that can be used to bypass both ASLR and DEP on current versions of Windows and give an attacker control of a remote PC. The flaw apparently results from a parameter from an older version of QuickTime that was left in the code by mistake. It was discovered by Ruben Santamarta of Wintercore, who said the vulnerability can be exploited remotely via a malicious Web site. On a machine running Internet Explorer on Windows 7, Vista or XP with QuickTime 7.x or 6.x installed, the problem can be exploited by using a heap-spraying technique. In his explanation of the details of the vulnerability and the exploit for it, Santamarta said he believes the parameter at the heart of the problem simply was not cleared out of older versions of the QuickTime code. ‘The QuickTime plugin is widely installed and exploitable through IE; ASLR and DEP are not effective in this case and we will likely see this in the wild,’ said HD Moore, founder of the Metasploit Project.”

Source: New QuickTime Flaw Bypasses ASLR, DEP

Related Articles:

  1. New QuickTime Flaw Bypasses ASLR, DEP
  2. New Chrome Exploit Bypasses Sandbox, ASLR and DEP
  3. MS Virtual PC Flaw Defeats Windows Defenses
  4. Microsoft To Issue Emergency Fix For Windows .LNK Flaw
  5. US-CERT Discloses Security Flaw In 64-Bit Intel Chips
blog comments powered by Disqus