Apple_QuickTime_MOV_File_String_Handling_Integer_Overflow_attack

A vulnerability exists in the way Apple QuickTime handles MOV media files. Specifically, the processing of crafted string values embedded in a MOV file is prone to a buffer overflow. This vulnerability may result in arbitrary code being injected and executed on the target host. In a successful attack, an attacker can inject code into the vulnerable target. The behaviour of the target is dependent on the malicious code. If such an attack is not executed successfully, the vulnerable application may terminate as a result of the attack attempt. Note that any code executed by the attacker runs with the privileges of the logged in user.