CVE-2006-4389
Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted FlashPix (FPX) file, which triggers an exception that leads to an operation on an uninitialized object.
Date published : 2006-09-12
http://lists.apple.com/archives/Security-announce/2006/Sep/msg00000.html