SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com





Category:   Application (Instant Messaging/IRC/Chat)  >   iChat Vendors:   Apple Computer
Apple iChat May Let Remote Users Start Applications on the Target User's System in Certain Cases
SecurityTracker Alert ID:  1011338
SecurityTracker URL:  http://securitytracker.com/id/1011338
CVE Reference:   CAN-2004-0873   (Links to External Site)
Date:  Sep 17 2004
Impact:   Execution of arbitrary code via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 1.0.1, 2.0, 2.1
Description:   A vulnerability was reported in Apple's iChat. A remote user may be able to cause an application on the target user's system to be launched.

The vendor reported that a remote iChat user can send a specially crafted 'link' that, when activated by the target user, will cause an application on the target user's system to run.

aaron@vtty.com is credited with reporting this flaw.
Impact:   A remote user may be able to cause applications on the target user's system to be executed with the privileges of the target user.
Solution:   Apple has released a fix as part of Security Update 2004-09-16, available from the Software Update pane in System Preferences, or Apple's Software Downloads web site:

http://www.apple.com/support/downloads/

For iChat AV v2.1:

The download file is named: "SecUpd2004-09-16Pan.dmg"
Its SHA-1 digest is: 0ef503c5f8a655de740e50f324d7311a1be6fe70

For iChat AV v2.0:

The download file is named: "SecUpd2004-09-16JagAV.dmg"
Its SHA-1 digest is: 9175d92b2036d86be324de8fa386a781aabbe932

For iChat v1.0.1:

The download file is named: "SecUpd2004-09-16Jag.dmg"
Its SHA-1 digest is: 4b637f08b22b70bcb65a3767814c9b3826e2edb1
Vendor URL:  www.apple.com/support/security/security_updates.html (Links to External Site)
Cause:   State error
Underlying OS:   UNIX (OS X)

Message History:   None.

 Source Message Contents
Date:  Thu, 16 Sep 2004 19:40:39 -0700
Subject:  APPLE-SA-2004-09-16 Security Update 2004-09-16


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

APPLE-SA-2004-09-16 Security Update 2004-09-16

Security Update 2004-09-16 is now available and delivers a security
enhancement for the iChat application.

CVE-ID:  CAN-2004-0873
Impact:  Remote iChat participants can send "links" that can start
local programs if clicked.
Description:  A remote iChat participant can send a "link" that
references a program on the local system.  If the "link" is activated
by clicking on it, and the "link" points to a local program, then the
program will run.  iChat has been modified so that "links" of this
type will open a Finder window that displays the program instead of
running it.  Credit to <aaron@vtty.com> for reporting this issue.

Security Update 2004-09-16 is available for the following iChat
versions:
* iChat AV v2.1 (Mac OS X v10.3 or later)
* iChat AV v2.0 (Mac OS X v10.2.8)
* iChat 1.0.1 (Mac OS X v10.2.8)

================================================

Security Update 2004-09-16 may be obtained from the Software Update
pane in System Preferences, or Apple's Software Downloads web site:
http://www.apple.com/support/downloads/

For iChat AV v2.1
=====================================
The download file is named: "SecUpd2004-09-16Pan.dmg"
Its SHA-1 digest is:  0ef503c5f8a655de740e50f324d7311a1be6fe70

For iChat AV v2.0
=====================================
The download file is named: "SecUpd2004-09-16JagAV.dmg"
Its SHA-1 digest is:  9175d92b2036d86be324de8fa386a781aabbe932

For iChat v1.0.1
=====================================
The download file is named: "SecUpd2004-09-16Jag.dmg"
Its SHA-1 digest is:  4b637f08b22b70bcb65a3767814c9b3826e2edb1

Information will also be posted to the Apple Product Security
web site:
http://www.apple.com/support/security/security_updates.html

This message is signed with Apple's Product Security PGP key,
and details are available at:
http://www.apple.com/support/security/security_pgp.html

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQEVAwUBQUpOOpyw5owIz4TQAQKjAQgAjC/Fqf1aRImxjptO/xVEyg49EjSXWf42
A6lAsr7J6TPza2VdlkG3Sik3GSCwc68bdEQZFkyGIEkw0zeBMQLNzSKKShD8v0jQ
SmxyX29noaEDNUd10fP7JCBj0FqzxW2Z0RsYwUh54bb0NTLAz17G65bGpPfBEz2v
9hUyDE158V2WRTmPj/VkYK2vgFDdwmzycCdSK6IyKJsQ10HWqSVAPj1qV/9MIxzc
rVythLNJLwiRfOF3dTOAfMJIGV151K9s6Iqa0N4pSyj7gdtNEhVq5RmCzvYdQkkd
82hI1occwifbv4jxuGPPy3UKB697FqaE9+nWQVpzd09SZ1dXAnn75A==
=mLjD
-----END PGP SIGNATURE-----

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Security-announce mailing list      (Security-announce@lists.apple.com)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/security-announce/fm%40boo.net

This email sent to **********


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us

Copyright 2013, SecurityGlobal.net LLC