Hi All,
A security researcher has uncovered a new vulnerability in Apple QuickTime that can be used to bypass some security protections in Microsoft Windows. According to Wintercore Security's Ruben Santamarta, the bug seems to be the result of a parameter from an older version of QuickTime being mistakenly left in the code. The vulnerability can be exploited remotely on machines running Internet Explorer (IE) on Windows XP, Vista or Windows 7 with QuickTime versions 6x or 7x. "The exploit defeats ASLR+DEP and has been successfully tested on W7, Vista and XP," he blogged. "A metasploit module should be available soon since I sent the exploit details ... some days before releasing this advisory." For More Information:. http://reversemode.com/index.php?option=com_content&task=view&id=69&Itemid=1 -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
