Damian Put

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.7.2 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted movie file with Sorenson encoding. This is related to a buffer overflow in the Sorenson codec. **Recommendations** For versions prior to 7.7.2, update to version 7.7.2 or later to resolve the issue. As a temporary workaround, consider avoiding the use of Sorenson encoded movie files until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.7.x through 10.7.3 **Description** The issue is related to a use-after-free vulnerability in QuickTime, allowing remote attackers to execute arbitrary code or cause a denial of service via a crafted movie file with JPEG2000 encoding. **Recommendations** For Apple Mac OS X versions 10.7.x through 10.7.3, update to version 10.7.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.7.4 **Description** A buffer underflow issue in QuickTime allows remote attackers to execute arbitrary code or cause a denial of service via a crafted MPEG file. **Recommendations** For versions prior to 10.7.4, update to version 10.7.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.7.2 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted FlashPix file. This is related to a buffer overflow in QuickTime. **Recommendations** For versions prior to 10.7.2, update to version 10.7.2 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted FlashPix files until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 6 through 9 **Description** The issue arises from improper handling of objects in memory, allowing remote attackers to execute arbitrary code by accessing an object that was not properly initialized or has been deleted. This can lead to memory corruption, enabling an attacker to execute arbitrary code in the context of the logged-on user. **Recommendations** For Microsoft Internet Explorer versions 6 through 9, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** RealPlayer versions 11.0 through 11.1 RealPlayer SP versions 1.0 through 1.1.5 Linux RealPlayer version 11.0.2.1744 **Description** The issue is related to a heap-based buffer overflow in the cook codec, allowing remote attackers to execute arbitrary code via unspecified data in the initialization buffer. **Recommendations** For RealPlayer versions 11.0 through 11.1, update to a version that fixes the cook codec initialization buffer overflow issue. For RealPlayer SP versions 1.0 through 1.1.5, update to a version that fixes the cook codec initialization buffer overflow issue. For Linux RealPlayer version 11.0.2.1744, update to a version that fixes the cook codec initialization buffer overflow issue.

**Name of the Vulnerable Software and Affected Versions** RealPlayer versions 11.0 through 11.1 RealPlayer SP versions 1.0 through 1.1.5 Linux RealPlayer version 11.0.2.1744 **Description** The issue allows remote attackers to execute arbitrary code via a crafted conditional component in AAC frame data. This is a result of a heap-based buffer overflow. **Recommendations** For RealPlayer versions 11.0 through 11.1, update to a version that fixes the heap-based buffer overflow issue. For RealPlayer SP versions 1.0 through 1.1.5, update to a version that fixes the heap-based buffer overflow issue. For Linux RealPlayer version 11.0.2.1744, update to a version that fixes the heap-based buffer overflow issue.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.9 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted FlashPix file. **Recommendations** For versions prior to 7.6.9, update to version 7.6.9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.6.x through 10.6.4 QuickTime in Apple Mac OS X version 10.6.x before 10.6.5 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted JP2 file, due to QuickTime accessing uninitialized memory locations during the processing of JP2 image data. **Recommendations** For Apple Mac OS X versions 10.6.x through 10.6.4, update to version 10.6.5 or later to resolve the issue. For QuickTime in Apple Mac OS X version 10.6.x before 10.6.5, update to version 10.6.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.6.x through 10.6.4 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted AVI file. This is related to the parsing of rec chunks in QuickTime. **Recommendations** For Apple Mac OS X versions 10.6.x through 10.6.4, update to version 10.6.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Adobe Shockwave Player versions prior to 11.5.8.612 **Description** The issue is related to the improper validation of an offset value in the pami RIFF chunk in a Director movie. This can lead to memory corruption, allowing remote attackers to cause a denial of service or execute arbitrary code via a crafted movie. **Recommendations** For Adobe Shockwave Player versions prior to 11.5.8.612, update to version 11.5.8.612 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Adobe Flash Player versions prior to 9.0.277.0 Adobe Flash Player versions 10.x prior to 10.1.53.64 Adobe AIR versions prior to 2.0.2.12610 **Description** The issue allows attackers to cause a denial of service or possibly execute arbitrary code via vectors related to improper length calculation and the atoms, including the (1) STSC, (2) STSZ, and (3) STCO atoms. This can lead to heap memory corruption. **Recommendations** For Adobe Flash Player versions prior to 9.0.277.0, update to version 9.0.277.0 or later. For Adobe Flash Player versions 10.x prior to 10.1.53.64, update to version 10.1.53.64 or later. For Adobe AIR versions prior to 2.0.2.12610, update to version 2.0.2.12610 or later.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.6 **Description** The issue is related to a heap-based buffer overflow in Apple QuickTime, which allows remote attackers to execute arbitrary code or cause a denial of service, resulting in an application crash. This can be achieved via a crafted PICT image, specifically one with a BkPixPat opcode (0x12) containing crafted values used in a calculation for memory allocation. **Recommendations** For versions prior to 7.6.6, update to version 7.6.6 or later to resolve the issue. As a temporary workaround, consider avoiding the use of PICT images with BkPixPat opcodes until the update is applied. Restrict access to potentially malicious PICT images to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.6.3 **Description** The issue is related to a heap-based buffer overflow in CoreMedia and QuickTime, allowing remote attackers to execute arbitrary code or cause a denial of service via a malformed movie file with H.263 encoding. This can trigger an incorrect buffer length calculation. **Recommendations** For Apple Mac OS X versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of H.263 encoding in movie files until the update is applied. Restrict access to potentially malicious movie files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions prior to 10.6.3 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted movie file with M-JPEG encoding. This is due to a heap-based buffer overflow in QuickTime, where the buffer size is calculated using height and width fields, but a different field is used to control the length of a copy operation. **Recommendations** For Apple Mac OS X versions prior to 10.6.3, update to version 10.6.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of M-JPEG encoded movie files in QuickTime until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.4 **Description** A heap-based buffer overflow issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted FlashPix file. **Recommendations** For versions prior to 7.6.4, update to version 7.6.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.2 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a crafted compressed PSD image. This is due to a buffer overflow. **Recommendations** For versions prior to 7.6.2, update to version 7.6.2 or later to resolve the issue. As a temporary workaround, consider avoiding the use of compressed PSD images in Apple QuickTime until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.6.2 **Description** The issue is related to a heap-based buffer overflow that can be triggered by a crafted JP2 image, allowing remote attackers to execute arbitrary code or cause the application to crash. **Recommendations** For versions prior to 7.6.2, update to version 7.6.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple Mac OS X versions 10.4.11 through 10.5.6 Apple QuickTime versions prior to 7.6.2 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service via a PICT image with a crafted `0x77` Poly tag and a crafted `length` field, which triggers a heap-based buffer overflow. This can be achieved by exploiting an integer underflow in the QuickDraw Manager. **Recommendations** For Apple Mac OS X versions 10.4.11 through 10.5.6, update to version 10.5.7 or later to resolve the issue. For Apple QuickTime versions prior to 7.6.2, update to version 7.6.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Trillian versions prior to 3.1.12.0 **Description** A heap-based buffer overflow issue exists in the XML parser of the AIM plugin. This allows remote attackers to execute arbitrary code via a malformed XML tag. **Recommendations** For versions prior to 3.1.12.0, update to version 3.1.12.0 or later to resolve the issue.