Apple QuickTime ActiveX Component Buffer Overrun Vulnerability

Apple QuickTime ActiveX Component Buffer Overrun Vulnerability

A vulnerability has been reported in the Apple QuickTime ActiveX component for Internet Explorer. The issue is a buffer-overrun condition that occurs because the software fails to perform adequate boundary checks of supplied arguments. If the component is invoked with the 'pluginspage' argument set to an overly long string value, the overrun will occur.

Successful exploits may allow attacker-supplied instructions to run on affected client systems.