Memory corruption

The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted PICT file that triggers memory corruption ...

Apple QuickDraw InternalUnpackBits远程内存破坏漏洞

QuickDraw是Apple操作系统中所捆绑的图形处理工具。 QuickDraw在解析带有畸形ARGB记录的PICT图形时存在内存破坏漏洞，远程攻击者可能利用此漏洞对用户机器执行拒绝服务攻击。 如果用户受骗打开了恶意图形文件的话，就会触发这个漏洞，破坏传送给GetSrcBits32ARGB函数的指针，导致拒绝服务。 Apple Mac OS X 10.4.8 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.apple.com http://security-protocols.com/poc/sp-x43.pct...