IDP Signatures

63552 FTYP.AppleQuickTime.Integer.Overflow

Back to list
Signature ID 63552
Name FTYP.AppleQuickTime.Integer.Overflow
Group IPS APP GENERIC
Issued 2009-08-20
Last Updated 2010-12-01
Description Apple QuickTime Player versions prior to 7.2 are vulnerable to an integer overflow condition. The flaw occurs within the FlipFileTypeAtom_BtoN() function when processing FTYP atoms in malformed movie (MOV) files. This could allow a remote, user-assisted attacker to crash the application, corrupt memory, or execute arbitrary code. This signature detects HTTP traffic containing Apple QuickTime movie files that have a malformed FlipFileType (FTYP) atom.
CVE ID 2007-2296