Apple QuickTime FLC Encoded '.fli' Movie File Remote Heap Buffer Overflow Vulnerability

Bugtraq ID: 39152
Class: Boundary Condition Error
CVE: CVE-2010-0520
Remote: Yes
Local: No
Published: Mar 29 2010 12:00AM
Updated: Sep 20 2010 06:41AM
Credit: Moritz Jodeit of n.runs AG, working with TippingPoint's Zero Day Initiative; Nicols Joly of VUPEN Security
Vulnerable: Apple QuickTime Player 7.6.5
Apple QuickTime Player 7.6.4
Apple QuickTime Player 7.6.2
Apple QuickTime Player 7.6.1
Apple QuickTime Player 7.6
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.6
Not Vulnerable: Apple QuickTime Player 7.6.6
Apple Mac OS X Server 10.6.3
Apple Mac OS X 10.6.3


 

Privacy Statement
Copyright 2010, SecurityFocus