vendor:
QuickTime
by:
ATmaCA
N/A
CVSS
HIGH
Remote Crash
119
CWE
Product Name: QuickTime
Affected Version From: 6.5.2.10
Affected Version To: 6.5.2.10
Patch Exists: NO
Related CWE:
CPE: a:apple:quicktime
Platforms Tested:
2005
QuickTime qtif Image File Parsing Remote Crash
The vulnerability exists in QuickTime.qts component parsing (.qtif) image files that contain an uncompleted header. A remote user can create a file that, when processed by QuickTime PictureViewer or via a browser, can cause the remote system to crash.
Mitigation:
No vendor response available.