Vulnerabilities

CVE-2009-1274

by Fred · 08/04/2009

Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote attackers to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buffer overflow.

Date published : 2009-04-08

http://www.securityfocus.com/bid/34384

http://www.securityfocus.com/archive/1/502481/100/0/threaded

Similar

Tags: Cybersecurity Alert