Computer Security
[EN] no-pyccku

Apple QuickTime buffer overflow
updated since 12.07.2007
SecurityVulns ID:7925
Threat Level:
Description:Buffer overflow on SMIL format parsing.
Affected:APPLE : QuickTime 7.1
CVE:CVE-2007-2394 (Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via crafted (1) title and (2) author fields in an SMIL file, related to improper calculations for memory allocation.)
Original documentdocumentCERT, US-CERT Technical Cyber Security Alert TA07-193A -- Apple Releases Security Updates for QuickTime (13.07.2007)
 documentIDEFENSE, [Full-disclosure] iDefense Security Advisory 07.11.07: Apple QuickTime SMIL File Processing Integer Overflow Vulnerability (12.07.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod