=====================================================================
                                  CERT-Renater

                       Note d'Information No. 2005/VULN297
_____________________________________________________________________

DATE                      : 10/05/2005

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running iTunes 4.8.

======================================================================

APPLE-SA-2005-05-09 iTunes 4.8

iTunes 4.8 is now available and, among other enhancements, delivers
the following security improvement:

CVE-ID:  CAN-2005-1248

Impact:  A buffer overflow in iTunes could cause a denial of service
and lead to execution of arbitrary code

Description:  The MPEG4 file parsing code in iTunes versions prior to
4.8 contains a buffer overflow vulnerability.  Parsing a
maliciously-crafted MPEG4 file could cause iTunes to terminate or
potentially execute arbitrary code.  iTunes 4.8 addresses this issue
by improving the validation checks used when loading MPEG4 files.
Credit to Mark Litchfield of NGS Software for reporting this issue.

iTunes 4.8 is freely available at
http://www.apple.com/itunes/download/ for Mac OS X v10.2.8 or later,
Microsoft Windows XP, and Microsoft Windows 2000

For Mac OS X:
The download file is named:  "iTunes4.8.dmg"
Its SHA-1 digest is:  5a86f278f9f83192a7789ad123d5d62f67a6a316

For Windows 2000 or XP:
The download file is named:  "iTunesSetup.exe"
Its SHA-1 digest is:  12582d193b27991c8f069331ab12d107c569bde2

Information will also be posted to the Apple Product Security
web site:
http://docs.info.apple.com/article.html?artnum=61798

This message is signed with Apple's Product Security PGP key,
and details are available at:
http://www.apple.com/support/security/pgp/

======================================================================

         =========================================================
         Les serveurs de référence du CERT-Renater
         http://www.urec.fr/securite
         http://www.cru.fr/securite
         http://www.renater.fr
         =========================================================
         + CERT-RENATER          | tel : 01-53-94-20-44          +
         + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
         + 75013 Paris           | email: certsvp@renater.fr     +
         =========================================================