CVE-2007-0462

Name of the Vulnerable Software and Affected Versions Apple Quicktime versions 7.1.3 and earlier

Description The issue allows remote attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code. This is achieved through a crafted PICT image containing a malformed Alpha RGB (ARGB) record, which triggers memory corruption.

Recommendations For Apple Quicktime versions 7.1.3 and earlier, consider updating to a newer version to mitigate the risk of exploitation. As a temporary workaround, avoid using the GetSrcBits32ARGB function until a patch is available. Restrict access to potentially malicious PICT images to minimize the risk of triggering memory corruption.