Petko D. Petkov, better known as “pdp” is a well-known author and researcher in the world of Internet security. His group of researchers, GNUCitizen, recently disclosed a brand new vulnerability in Apple’s Quick Time software. The interesting aspect is that the vulnerability affects not only Windows XP completely patched with SP2, but Windows Vista patched with SP1.
Video below. There is a new 0-Day that affects Windows XP and Vista based on Apple\'s QuickTime software. (IMG: J.Anderson)
GNUCitizen has released vulnerabilities in the past, and this past week they have released a video and some details on a new vulnerability in the media software.
“A remote vulnerability exists in the QuickTime player for Windows XP and Vista (latest service packs). An attacker could exploit the vulnerability by constructing a specially crafted QuickTime supported media file that allows remote code execution if a user visited a malicious Web site, opened a specially crafted attachment in e-mail or opened a maliciously crafted media file from the desktop,” pdp wrote.
The code executes with the level of permissions as the currently logged in user. Thus, “If a user is logged on with administrative privileges, the attacker could take complete control of an affected system.”
Complete control is demonstrated in a posted video proving that the exploit does in fact target Vista computers as well as XP. SP3 for XP is unknown; if GNUCitizen tested it, they did not mention it in their alert. “The GNUCITIZEN team is following responsible disclosure practices,” pdp wrote, explaining that Apple will get the full details before the vulnerability is completely released to the public. “This advisory is meant to inform the public and raise the consumer’s awareness,” he adds.
QuickTime 7.4.5 was released this month; the release addressed several security vulnerabilities. This new release is affected by the recent disclosure.
Note: Just a quick note to explain the video. The MS Paint and Calculators that you see opening are the result of the vulnerability. The commands are being issued without the knowledge of the user. This is demostrating the complete control over the system.
Video below:
There are currently no comments for this article. Be the first to comment!
Advertising
There are currently no comments for this article. Be the first to comment!