|CVSS SCORE||6.8, (AV:N/AC:M/Au:N/C:P/I:P/A:P)|
|TIPPINGPOINT™ IPS CUSTOMER PROTECTION||TippingPoint IPS customers are protected against this vulnerability by Digital Vaccine protection filter ID 21919. For further product information on the TippingPoint IPS: http://www.tippingpoint.com|
The specific flaw exists within atom processing. By providing an invalid index, an attacker can write data outside of an allocated heap buffer. An attacker could leverage this to execute arbitrary code under the context of the QuickTime player.
11/11/2015 - ZDI reported 2 vulnerabilities to the vendor
|CREDIT||Steven Seeley of Source Incite