/>
X
Innovation

iPhone, QuickTime bitten by security bugs

Apple has released security patches to cover serious security vulnerabilities in its iPhone, iPod Touch and QuickTime products.
Written by Ryan Naraine, Contributor on

Apple has released security patches to cover serious security vulnerabilities in its iPhone, iPod Touch and QuickTime products.

The most serious of the vulnerabilities could lead to remote code execution attacks that give malicious hackers an easy way to hijack computers and mobile devices.

Here are some of the more serious security bugs covered with the iPhone OS 3.1 and iPhone OS 3.1.1 update:

  • CoreAudio (CVE-2009-2206) -- A heap buffer overflow exists in the handling of AAC and MP3 files. Opening a maliciously crafted AAC or MP3 file may lead to an unexpected application termination or arbitrary code execution.
  • Recovery Mode (CVE-2009-2795) -- A person with physical access to a locked device may be able to access the user's data. A heap buffer overflow exists in Recovery Mode command parsing. This may allow another person with physical access to the device to bypass the passcode, and access the user's data. This update addresses the issue through improved bounds checking.
  • Telephony (CVE-2009-2815) -- Receiving a maliciously crafted SMS message may lead to an unexpected service interruption. A null pointer dereference issue exists in the handling of SMS arrival notifications. Receiving a maliciously crafted SMS message may lead to an unexpected service interruption. This update addresses the issue through improved handling of incoming SMS messages.
  • WebKit (CVE-2009-1725) -- A memory corruption issue exists in WebKit's handling of numeric character references. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution.

FOUR VULNERABILITIES IN QUICKTIME

Apple also shipped QuickTime 7.6.4 to cover four vulnerabilities affecting Mac and Windows users:

  • CVE-2009-2202 -- A memory corruption issue exists in QuickTime's handling of H.264 movie files. Viewing a maliciously crafted H.264 movie file may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-2203 -- A buffer overflow exists in QuickTime's handling of MPEG-4 video files. Opening a maliciously crafted MPEG-4 video file may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-2798 -- A heap buffer overflow exists in QuickTime's handling of FlashPix files. Viewing a maliciously crafted FlashPix file may lead to an unexpected application termination or arbitrary code execution.
  • CVE-2009-2799 -- A heap buffer overflow exists in QuickTime's handling of H.264 movie files. Viewing a maliciously crafted H.264 movie file may lead to an unexpected application termination or arbitrary code execution.

The iPhone and iPod Touch updates are available via iTunes.   The QuickTime patch is being pushed out via the automatic updating software in Mac OS X and Windows.

Editorial standards