Check Point Advisories

Apple iTunes Playlists Name Handling Buffer Overflow (CVE-2005-0043)

Vulnerability
Protection

Check Point Reference:	CPAI-2005-189
Date Published:	30 Nov 2009
Severity:	High
Last Updated:	Sunday 26 April, 2015
Source:
Industry Reference:	CVE-2005-0043
Protection Provided by:	Security Gateway R81, R80, R77, R75
Who is Vulnerable?
Vulnerability Description	iTunes is a popular digital music player by Apple Computer. iTunes is capable of creating new playlists and opening up existing ones which conform to the PLS or M3U file formats. The PLS and M3U file formats are proprietary formats used for playing digital music streams. There exists a stack buffer overflow vulnerability in the Apple iTunes music player. The application does not perform sufficient validation of user supplied parameters in a playlist file. This lack of validation allows for a fixed size buffer to be overrun which can result in a denial of service condition or arbitrary code execution. In the case of a simple exploit, the affected application on the target system will terminate unexpectedly. In the case of a more sophisticated exploit, when arbitrary code is injected and executed, the behaviour of the target system is dependent on the intention of the attacker.

Protection Overview

This protection will detect and block attempts to exploit this vulnerability

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R80 / R77 / R75

In the IPS tab, click Protections and find the Apple iTunes Playlists Name Handling Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: Media Player Enforcement Violation.
Attack Information: Apple iTunes playlists name handling buffer overflow