Apple Quicktime UDTA ATOM Integer Overflow Vulnerability

Apple QuickTime is prone to an integer-overflow vulnerability when processing specially crafted MOV files.

An attacker can exploit this issue to execute arbitrary code in the context of a user running the application. Failed attempts can cause denial-of-service conditions.

Versions prior to 7.1.5 are vulnerable.

This issue was previously discussed in BID 22827 (Apple QuickTime Multiple Unspecified Code Execution Vulnerabilities), but has been assigned its own record because of new information.


 

Privacy Statement
Copyright 2010, SecurityFocus