|
|
|||
Release Date:2012/07/06
Attack Name:FILE Apple QuickTime QTVR QTVRStringAtom Parsing Buffer Overflow (CVE-2012-0667)
Severity:
BUG ID:
CVE ID:
| Description:
|
A buffer overflow vulnerability exists in Apple QuickTime. The vulnerability is due to a signedness error, which leads to a stack-based buffer overflow when processing a QTVR string atom having an overly large stringLength parameter.
Impact:Remote code execution
Affected System:Windows, Linux, FreeBSD, Solaris, Other Unix, Mac OS
Additional References:CVE-2012-0667
| Solution:
|
Update vendor's patch.