eEye Digital Security has discovered a critical vulnerability in QuickTime Player. There is a integer overflow in the way QuickTime processes fpx format files. An attacker can create a fpx file and send it to the user via email, web page, or fpx file with activex.
43adc773eca673b0b8c59d551604cc2d366d6bcdd7893a6ec67c822b737336af