Sign-up

ID

VAR-200812-0010


CVE

CVE-2008-5406


TITLE

Apple QuickTime Player and iTunes Vulnerable to stack-based buffer overflow

Trust: 0.8

sources: JVNDB: JVNDB-2008-003707

DESCRIPTION

Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow.". Apple iTunes and QuickTime are prone to a buffer-overflow vulnerability because the applications fail to bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. This issue affects the following: iTunes 8.0.2.20 through 9.0.1.8 QuickTime 7.3.4 through QuickTime X Additional versions or applications that rely on the QuickTime library may also be affected. Apple QuickTime Player is Apple's media player software. A stack buffer overflow exists in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20

Trust: 1.98

sources: NVD: CVE-2008-5406 // JVNDB: JVNDB-2008-003707 // BID: 32540 // VULHUB: VHN-35531

AFFECTED PRODUCTS

vendor:applemodel:itunesscope:eqversion:8.0.2.20

Trust: 2.7

vendor:applemodel:quicktimescope:eqversion:7.5.5

Trust: 2.4

vendor:applemodel:quicktimescope:eqversion:x0

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.6.5

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.6.4

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.6.2

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.6.1

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.5.5

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.4.5

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.4.1

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.3.1.70

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.3.1

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.6

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.5

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.4

Trust: 0.3

vendor:applemodel:quicktime playerscope:eqversion:7.3

Trust: 0.3

vendor:applemodel:quicktimescope:eqversion:7.3.4

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:9.0.1.8

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:9.0.1

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:9.0

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:8.2

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:8.1

Trust: 0.3

vendor:applemodel:itunesscope:eqversion:8.0

Trust: 0.3

sources: BID: 32540 // JVNDB: JVNDB-2008-003707 // CNNVD: CNNVD-200812-161 // NVD: CVE-2008-5406

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2008-5406
value: HIGH

Trust: 1.0

NVD: CVE-2008-5406
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200812-161
value: CRITICAL

Trust: 0.6

VULHUB: VHN-35531
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2008-5406
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-35531
severity: HIGH
baseScore: 9.3
vectorString: AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.6
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-35531 // JVNDB: JVNDB-2008-003707 // CNNVD: CNNVD-200812-161 // NVD: CVE-2008-5406

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-35531 // JVNDB: JVNDB-2008-003707 // NVD: CVE-2008-5406

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200812-161

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200812-161

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2008-003707

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-35531

PATCH
title:Top Pageurl:http://www.apple.com/quicktime/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2008-003707

EXTERNAL IDS
db:NVDid:CVE-2008-5406
Trust: 2.8
db:BIDid:32540
Trust: 2.0
db:EXPLOIT-DBid:7296
Trust: 1.7
db:SREASONid:4704
Trust: 1.7
db:JVNDBid:JVNDB-2008-003707
Trust: 0.8
db:CNNVDid:CNNVD-200812-161
Trust: 0.7
db:XFid:46984
Trust: 0.6
db:MILW0RMid:7296
Trust: 0.6
db:VULHUBid:VHN-35531
Trust: 0.1
sources:
            
            
            VULHUB: VHN-35531 // 
            
            
            
            BID: 32540 // 
            
            
            
            JVNDB: JVNDB-2008-003707 // 
            
            
            
            CNNVD: CNNVD-200812-161 // 
            
            
            
            NVD: CVE-2008-5406

REFERENCES
url:http://www.securityfocus.com/bid/32540
Trust: 1.7
url:http://securityreason.com/securityalert/4704
Trust: 1.7
url:https://www.exploit-db.com/exploits/7296
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/46984
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-5406
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-5406
Trust: 0.8
url:http://xforce.iss.net/xforce/xfdb/46984
Trust: 0.6
url:http://www.milw0rm.com/exploits/7296
Trust: 0.6
url:http://www.apple.com/quicktime/
Trust: 0.3
url:http://isc.sans.org/diary.html?storyid=8008
Trust: 0.3
url:http://www.apple.com/itunes/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-35531 // 
            
            
            
            BID: 32540 // 
            
            
            
            JVNDB: JVNDB-2008-003707 // 
            
            
            
            CNNVD: CNNVD-200812-161 // 
            
            
            
            NVD: CVE-2008-5406

CREDITS
laurent gaffiƩ
Trust: 0.3
sources:
            
            
            BID: 32540

SOURCES
db:VULHUBid:VHN-35531
db:BIDid:32540
db:JVNDBid:JVNDB-2008-003707
db:CNNVDid:CNNVD-200812-161
db:NVDid:CVE-2008-5406

LAST UPDATE DATE
2025-04-10T23:21:35.096000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-35531date:2017-09-29T00:00:00
db:BIDid:32540date:2015-04-13T21:12:00
db:JVNDBid:JVNDB-2008-003707date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200812-161date:2009-01-29T00:00:00
db:NVDid:CVE-2008-5406date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-35531date:2008-12-10T00:00:00
db:BIDid:32540date:2008-11-30T00:00:00
db:JVNDBid:JVNDB-2008-003707date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200812-161date:2008-12-10T00:00:00
db:NVDid:CVE-2008-5406date:2008-12-10T06:44:42.283