PDA

Visualizza versione completa : Quicktime Two Vulnerabilities


Giorgius
29-10-2004, 12.07.59
Two vulnerabilities have been reported in QuickTime, which can be exploited by malicious people to compromise a user's system.

1) An unspecified integer overflow can be exploited to cause a buffer overflow and execute arbitrary code on a user's system via a specially crafted HTML document.

This vulnerability only affects Windows systems.

2) A boundary error within the decoding of BMP images can be exploited to cause a heap-based buffer overflow and execute arbitrary code on a user's system.

This vulnerability affects both Windows and Mac OS X systems. However, it has been fixed priorly in Security Update 2004-09-30 for Mac OS X.

Leggi:
http://secunia.com/advisories/13005/