Good morning folks. This one is just out on the wires. Upgrade ASAP.

From Secunia:

Description:
Some vulnerabilities have been reported in Apple QuickTime, which potentially can be exploited by malicious people to compromise a user’s system.

1) An integer overflow error exists in the handling of 3GP video files.

NOTE: This does not affect QuickTime on Mac OS X.

2) A boundary error in the handling of MIDI files can be exploited to cause a heap-based buffer overflow.

3) A boundary error in the handling of QuickTime movie files can be exploited to cause a heap-based buffer overflow.

4) An integer overflow exists in the handling of UDTA atoms in movie files.

5) A boundary error in the handling of PICT files can be exploited to cause a heap-based buffer overflow.

6) A boundary error in the handling of QTIF files can be exploited to cause a stack-based buffer overflow.

7) An integer overflow exists in the handling of QTIF files.

8 ) An input validation error exists in the processing of QTIF files. This can be exploited to cause a heap corruption via a specially crafted QTIF file with the “Color Table ID” field set to “0”.

Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

Article Link

[tags]Quicktime Vulnerabilities, Quicktime, Exploit, Remote Exploit[/tags]

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.