Intrusion Prevention

Apple.QuickTime.Content.Type.Remote.Buffer.Overflow

Description

It indicates an attacker attempted a Buffer Overflow attack against Apple QuickTime. The Apple QuickTime multimedia player is prone to a Buffer Overflow vulnerability. The software does not perform suffiencient bounds checking on the ?Content-Type? header. This can be exploited if a server responds with a ?Content-Type? header of 500+ characters to an HTTP request for a multimedia file. This can lead to the execution of arbitrary code on the client computer.

Affected Products

Apple QuickTime Player for Windows (Japanese) 5.0.2 ? 5.0.1

Impact

Compromise of the affected system.

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

CVE References

CVE-2002-0252