Apple QuickTime hit by buffer overflow
QTL vulnerability clould allow attackers to run malicious code
Apple’s QuickTime software has been hit by a buffer overflow bug that could allow malicious code to be run on Windows and Mac PCs.
The vulnerability uses a specially crafted QTL file to cause a stack-based buffer overflow that allows the execution of arbitrary code.
The problem occurs when an ‘src’ parameter is created with more than 256 bytes.
Read more: vnunet.com