Intrusion Prevention

Apple.QuickTime.Malformed.QTIF.Embedded.JPEG.Buffer.Overflow

Description

This indicates an attack attempt to exploit a Stack Buffer Overflow in Apple Quicktime media player.
The vulnerability is caused by an improper handling of other media types such as QTIF and JPEG that could allow remote attacker to execute arbitrary code via specially crafted movie or image file.

Affected Products

Apple QuickTime Player

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version of Apple QuickTime Media Player:
http://www.apple.com/downloads/

CVE References

CVE-2007-0717