Intrusion Prevention

Apple.QuickTime.Player.Sample.Tables.Code.Execution

Description

This indicates an attack attempt against a Memory Corruption vulnerability in Apple QuickTime Player.
The vulnerability is caused by an error when the software handles a malicious crafted movie file. It could allow a remote attacker to execute arbitrary code via sending a crafted ".qtvr" movie file.

Affected Products

Mac OS X v10.6 through v10.6.7,
Mac OS X Server v10.6 through v10.6.7

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the patch supplied by the vendor:
http://support.apple.com/kb/HT4723

CVE References

CVE-2011-0210