Good morning folks. This one is just out on the wires. Upgrade ASAP.
From Secunia:
Description:
Some vulnerabilities have been reported in Apple QuickTime, which potentially can be exploited by malicious people to compromise a user’s system.
1) An integer overflow error exists in the handling of 3GP video files.
NOTE: This does not affect QuickTime on Mac OS X.
2) A boundary error in the handling of MIDI files can be exploited to cause a heap-based buffer overflow.
3) A boundary error in the handling of QuickTime movie files can be exploited to cause a heap-based buffer overflow.
4) An integer overflow exists in the handling of UDTA atoms in movie files.
5) A boundary error in the handling of PICT files can be exploited to cause a heap-based buffer overflow.
6) A boundary error in the handling of QTIF files can be exploited to cause a stack-based buffer overflow.
7) An integer overflow exists in the handling of QTIF files.
8 ) An input validation error exists in the processing of QTIF files. This can be exploited to cause a heap corruption via a specially crafted QTIF file with the “Color Table ID” field set to “0″.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
Tags: Quicktime Vulnerabilities, Quicktime, Exploit, Remote Exploit
