Apple QuickTime and Citrix MetaFrame Vulnerabilities
February 26th, 2008
The Sourcefire VRT is aware of vulnerabilities affecting Apple QuickTime and Citrix MetaFrame.
Apple QuickTime Buffer Overflow (CVE-2008-0033): Apple QuickTime contains a buffer overflow condition that may allow a remote attacker to execute code on a vulnerable system. The problem occurs when QuickTime attempts to process malformed movie files that contain an invalid Image Descriptor atom size.
A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 13517.
Apple QuickTime Buffer Overflow (CVE-2008-0234): Apple QuickTime contains a buffer overflow condition that may allow a remote attacker to execute code on a vulnerable system. The problem occurs when QuickTime attempts to process a long Reason-Phrase response to an rtsp request.
A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 13516.
Citrix MetaFrame Buffer Overflow (CVE-2008-0356): Citrix MetaFrame Presentation Server contains a buffer overflow condition that may allow a remote attacker to execute code on an affected system. The problem occurs when the service attempts to process TCP packets containing an invalid size value.
A rule to detect attacks targeting this vulnerability is included in this release and is identified as SID 13519.
For Assistance
- Visit the Sourcefire Customer Support site at https://support.sourcefire.com.
- Email Sourcefire Customer Support at support@sourcefire.com.
- Call Sourcefire Customer Support at 410.423.1901 or 1.800.917.4134.