The version of QuickTime installed on the remote host is older than 7.6.6. Such versions contain several vulnerabilities :
A heap buffer overflow in QuickTime’s handling of PICT images may lead to an application crash or arbitrary code execution. (CVE-2009-2837)
A memory corruption issue in QuickTime’s handling of QDM2 encoded audio content may lead to an application crash or arbitrary code execution. (CVE-2010-0059)
A memory corruption issue in QuickTime’s handling of QDMC encoded audio content may lead to an application crash or arbitrary code execution. (CVE-2010-060)
A heap buffer overflow in QuickTime’s handling of H.263 encoded movie file may lead to an application crash or arbitrary code execution. (CVE-2010-0062)
A heap buffer overflow in QuickTime’s handling of H.261 encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0514)
A memory corruption issue in QuickTime’s handling of H.264 encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0515)
A heap buffer overflow in QuickTime’s handling of RLE encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0516)
A heap buffer overflow in QuickTime’s handling of M-JPEG encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0517)
A memory corruption issue in QuickTime’s handling of Sorensen encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0518)
An integer overflow in QuickTime’s handling of FlashPix encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0519)
A heap buffer overflow in QuickTime’s handling of FLC encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0520)
A heap buffer overflow in QuickTime’s handling of MPEG encoded movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0526)
An integer overflow in QuickTime’s handling of PICT images may lead to an application crash or arbitrary code execution. (CVE-2010-0527)
A memory corruption issue in QuickTime’s handling of color tables in movie files may lead to an application crash or arbitrary code execution. (CVE-2010-0528)
A heap buffer overflow in QuickTime’s handling of PICT images may lead to an application crash or arbitrary code execution. (CVE-2010-0529)
A memory corruption issue in QuickTime’s handling of BMP images may lead to an application crash or arbitrary code execution. (CVE-2010-0536)
Binary data 5492.prm
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2837
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0059
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0060
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0062
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0514
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0515
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0516
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0517
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0518
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0519
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0520
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0526
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0527
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0528
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0529
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0536
lists.apple.com/archives/security-announce/2010/mar/msg00002.html
support.apple.com/kb/HT4104
www.securityfocus.com/advisories/19386