CVE-2008-1018
Heap-based buffer overflow in Apple QuickTime before 7.4.5 allows remote attackers to execute arbitrary code via an MP4A movie with a malformed Channel Compositor (aka chan) atom.
Date published : 2008-04-04
http://lists.apple.com/archives/security-announce/2008//Jul/msg00000.html