win32-codecs -- multiple vulnerabilities

2006-09-08T00:00:00
ID 24F6B1EB-43D5-11DB-81E1-000E0C2E438A
Type freebsd
Reporter FreeBSD
Modified 2006-10-17T00:00:00

Description

The Apple Security Team reports that there are multiple vulnerabilities within QuickTime (one of the plugins for win32-codecs). A remote attacker capable of creating a malicious SGI image, FlashPix, FLC movie, or a QuickTime movie can possibly lead to execution of arbitrary code or cause a Denial of Service (application crash). Users who have QuickTime (/win32-codecs) as a browser plugin may be vulnerable to remote code execution by visiting a website containing a malicious SGI image, FlashPix, FLC movie or a QuickTime movie.