Vulnerability Note VU#988356
Apple Mac OS X vulnerable to stack-based buffer overflow via specially crafted TIFF file
OverviewApple has reported a vulnerability in the way Mac OS X 10.4 systems handle TIFF images that could cause affected applications to crash or allow remote code execution..
I. DescriptionTIFF Image File Format
The TIFF image file format is a widely supported file format used for storing images.
Integration
The Safari web browser and other applications in Mac OS X versions 10.4 to 10.4.6 are capable of opening TIFF formatted images.
The problem
An attacker may be able to create a specially crafted TIFF image that exploits a stack based buffer overflow. If successfully exploited, this buffer overflow may result in an application crash or arbitrary code execution. Apple states that this vulnerability does not affect Mac OS X versions below 10.4.
II. ImpactA remote unauthenticated attacker may be able to execute arbitrary code or cause a denial of service by persuading a user to access a specially crafted TIFF image
III. SolutionUpgrade
Apply the upgrade provided by Apple. Refer to the Apple security updates in Mac OS X version 10.4.7 for more information.
Workarounds
Only open TIFF files that are from trusted sources.
Systems Affected
References
http://lists.apple.com/archives/security-announce/2006/Jun/msg00000.html
http://en.wikipedia.org/wiki/Tiff
http://www.faqs.org/faqs/graphics/fileformats-faq/part3/section-147.html
Credit
Thanks to Apple Product Security for reporting this vulnerability.
This document was written by Ryan Giobbi.
Other Information
| Date Public: | 2006-06-27 |
| Date First Published: | 2006-06-30 |
| Date Last Updated: | 2006-06-30 |
| CERT Advisory: | |
| CVE-ID(s): | CVE-2006-1469 |
| NVD-ID(s): | CVE-2006-1469 |
| US-CERT Technical Alerts: | |
| Metric: | 1.34 |
| Document Revision: | 23 |
If you have feedback, comments, or additional information about this vulnerability, please send us
email.
|
Get Adobe Reader