CVE-2009-1274

CVE-2009-1274 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Integer overflow in the qt_error parse_trak_atom function in demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote attackers to execute arbitrary code via a Quicktime movie file with a large count value in an STTS atom, which triggers a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.