Apple QuickTime hit by buffer overflow

by admin January 2, 2007 at 8:53 am

QTL vulnerability clould allow attackers to run malicious code

Apple’s QuickTime software has been hit by a buffer overflow bug that could allow malicious code to be run on Windows and Mac PCs.

The vulnerability uses a specially crafted QTL file to cause a stack-based buffer overflow that allows the execution of arbitrary code.

The problem occurs when an ‘src’ parameter is created with more than 256 bytes.

Read more: vnunet.com