Memory Corruption in QuickTime Could Allow Arbitrary Code Execution

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting Apple QuickTime software version 7.7.2 and earlier versions. Microsoft discovered and disclosed the vulnerability under coordinated vulnerability disclosure to the affected vendor,...

QuickTime < 7.7.3 Multiple Vulnerabilities (Windows)

Binary data 6620.prm...

QuickTime < 7.7.3 Multiple Vulnerabilities (Windows)

The version of QuickTime installed on the remote Windows host is older than 7.7.3 and therefore is reportedly affected by the following vulnerabilities : - A buffer overflow exists in the handling of REGION records in PICT files. CVE-2011-1374 - A memory corruption issue exists in the handling of...

CVE-2012-3757

CVE-2012-3757 affects Apple QuickTime before 7.7.3. The root cause is memory corruption in the handling of PICT files, allowing remote code execution or a denial of service when a crafted PICT file is opened. Exploitation requires a user to open a malicious file; impact could be full user rights ...

APPLE-SA-2012-11-07-1 QuickTime 7.7.3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2012-11-07-1 QuickTime 7.7.3 QuickTime 7.7.3 is now available and addresses the following: QuickTime Available for: Windows 7, Vista, XP SP2 or later Impact: Viewing a maliciously crafted PICT file may lead to an unexpected application...