CVE-2006-4384

Name of the Vulnerable Software and Affected Versions Apple QuickTime versions prior to 7.1.3

Description The issue is related to a heap-based buffer overflow that can be triggered by a specially crafted FLC movie file, specifically through the COLOR 64 chunk. This allows remote attackers to execute arbitrary code, resulting in a loss of integrity. The problem arises from the program's failure to properly validate FLC files, leading to a heap buffer overflow.

Recommendations For Apple QuickTime versions prior to 7.1.3, update to version 7.1.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of FLC files or restricting access to potentially malicious files until the update can be applied.