CVE-2011-0248

Name of the Vulnerable Software and Affected Versions Apple QuickTime versions prior to 7.7

Description The issue is related to a stack-based buffer overflow in the QuickTime ActiveX control when used with Internet Explorer, allowing remote attackers to execute arbitrary code or cause a denial of service via a crafted QTL file.

Recommendations For versions prior to 7.7, update to version 7.7 or later to resolve the issue. As a temporary workaround, consider avoiding the use of Internet Explorer with QuickTime until the update is applied. Restrict access to crafted QTL files to minimize the risk of exploitation.