Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Buffer overflow in Quicktime InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Buffer overflow in Quicktime

Published: 2010-01-17
Last Updated: 2010-01-17 21:25:12 UTC
by Rick Wanner (Version: 2)
2 comment(s)

A Dutch reader, G. Smit, gave us a heads up about a remotely exploitable vulnerability in Quicktime which can be exploited by malformed .mov files.

There is some information available at Offensive-security blog, in Dutch  at, Fortiguard also shows the vulnerability.  Securityfocus has also updated Bugtraq 32540.

 Although neither Fortiguard or Securityfocus show the latest version of Quicktime, 7.6.5, as being vulnerable,  we are getting reports that the exploit crashes 7.6.5.


-- Rick Wanner - rwanner at isc dot sans dot org

2 comment(s)
Diary Archives