Quicktime Player vulnerability allows code execution through Firefox
It has found a vulnerability in QuickTime Player that could allow an attacker to execute arbitrary code on the system if the victim opens a specially manipulated multimedia file. The failure is compounded when Firefox becomes the vector of attack.
QuickTime Player is a popular media player that Apple is part of the multimedia standard architecture of the same name. Is available individually or as a player as "plugin" for browsers such as Firefox, Internet Explorer and Opera.
The ruling stems from a design error in the processing parameter qtnext within QuickTime link files (. Qtl). This could allow an attacker to execute code if the victim opens a vulnerable player handled a file or visit a particular site also specially manipulated to exploit the vulnerability. In particular, a failure when it comes to debug XML allows an attacker to run JavaScript embedded likely to compromise the browser and operating system.
Discovered and published a very similar problem Quicktime in September 2006, which he says was ignored by Apple. Now the bug has been studied in greater depth and is considered very high risk. Has posted on its website a proof of concept that allows code execution when visiting the direct link to Firefox. According to its discoverer Internet Explorer is also vulnerable, but the impact is less due to internal political zones of the browser. It also appears that only under Windows is vulnerable and possibly Mac OS X.
There is no official patch. It is recommended not to visit pages with content Quicktime unsolicited links. eEye recommended in any case, disable the browser plug-in, a renowned npqt *. dll files or nppqt *. dll files in the directory, or (for Internet
Explorer) to activate the kill bit for the CLSID QuickTime 02BF25D5-8C17-4B23-BC80-D3488ABDDC6B and 4063BE15-470D-3B08-A0D5-B37161CFFD69. Firefox says it is already working on a new version that prevents the browser will become the trigger of vulnerability.
In all cases, and as a basic measure of security, we recommend using NoScript (plugin for Firefox) or areas of Internet Explorer (integrated functionality to disable the execution of JavaScript in pages unreliable).
More information:
Quicktime pwns firefox
http://www.gnucitizen.org/blog/0day-quicktime-pwns-firefox
Year-old QuickTime bug gives hackers new drive-by attack
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9036418
QTL Arbitrary JavaScript Execution
http://research.eeye.com/html/alerts/zeroday/20060920.html
Laboratory Hispasec
