Apple QuickTime QTL File Handling Remote Heap Buffer Overflow Vulnerability

Apple QuickTime QTL File Handling Remote Heap Buffer Overflow Vulnerability

Apple QuickTime is prone to a heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue by enticing an unsuspecting user to open a specially crafted QTL file.

Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the user running the application. Failed exploit attempts likely result in denial-of-service conditions.

This issue affects Apple QuickTime running on Microsoft Windows Vista, Microsoft Windows XP SP2, and Mac OS X.