[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] [CIRT.DK] Apple QuickTime 7.0.3 and earlier - JPG/PICT Buffer Overflow

To: "Full-Disclosure@Lists. Netsys. Com" <full-disclosure@xxxxxxxxxxxxxxxxx>, "Bugtraq@Securityfocus. Com" <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] [CIRT.DK] Apple QuickTime 7.0.3 and earlier - JPG/PICT Buffer Overflow
From: virus@xxxxxxxxx
Date: Wed, 11 Jan 2006 17:20:29 +0100

Hello,

CIRT.DK Advisory wrote:

Apple Quicktime are vulnerable to a buffer overflow in the handling of
.JPG/.PICT files
Read the full advisory http://www.cirt.dk/advisories/cirt-41-advisory.pdf

and additional the advisory from Apple, see http://lists.apple.com/archives/security-announce/2006/Jan/msg00001.html

Workaround:
Install the newest version, download here:
http://www.apple.com/quicktime/download/standalone.html

GTi

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] [CIRT.DK] Apple QuickTime 7.0.3 and earlier - JPG/PICT Buffer Overflow
  - From: CIRT.DK Advisory

Prev by Date: [Full-disclosure] Re: iDefense Security Advisory 12.22.05: Linux Kernel Socket Buffer Memory Exhaustion DoS Vulnerability
Next by Date: [Full-disclosure] [USN-240-1] bogofilter vulnerability
Previous by thread: [Full-disclosure] [CIRT.DK] Apple QuickTime 7.0.3 and earlier - JPG/PICT Buffer Overflow
Next by thread: [Full-disclosure] Re: iDefense Security Advisory 12.22.05: Linux Kernel Socket Buffer Memory Exhaustion DoS Vulnerability
Index(es):
- Date
- Thread