Apple Quicktime QTJava toQTPointer() Java Handling Arbitrary Code Execution Vulnerability

Apple Quicktime QTJava toQTPointer() Java Handling Arbitrary Code Execution Vulnerability

References:

BREAKING: MacBook Vuln In Quicktime, Affects Win32 Apple Code (Thomas Ptacek)
BREAKING: The Bug Report That Would Not Die: Dinoâ??s Finding Works In IE7 (Thomas Ptacek)
Hot Off The Matasano SMS Queue: CanSec Macbook Challenge Won (Thomas Ptacek)
Apple Homepage (Apple)
Details on Dinoâ??s QuickTime Advisory (With Code Snippet) (Thomas Ptacek)
Mac Hacked by QuickTime Bug "As Serious as ANI" (eWeek)
Mac OS X Homepage (Apple)
Apple QTJava toQTPointer() Pointer Arithmetic Memory Overwrite Vulnerability (ZDI)
Vulnerability Note VU#420668 Apple QuickTime for Java QTPointerRef heap memory c (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus