CVE-2008-1017 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-1017
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1017

Description: Heap-based buffer overflow in clipping region (aka crgn) atom handling in quicktime.qts in Apple QuickTime before 7.4.5 allows remote attackers to execute arbitrary code via a crafted movie.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41607 ST 1019761 SAID Secunia Advisory: SA29650 Secunia Advisory: SA31034 MISC http://www.zerodayinitiative.com/advisories/ZDI-08-015 CONFIRM http://support.apple.com/kb/HT1241 CERT http://www.us-cert.gov/cas/techalerts/TA08-094A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/490460/100/0/threaded BID 28583 APPLE http://lists.apple.com/archives/security-announce/2008//Jul/msg00000.html

Return to the previous page.