Paul Byrne of NGSSoftware has discovered a critical vulnerability in Apple Quicktime's implementation of the Indeo Codec which may allow an attacker to execute arbitrary code on a user's system via playing a malformed movie file in Quicktime containing video encoded in the Indeo Codec. Quicktime versions prior to 7.5.5 are affected.
1e4af91263ae0ea2d7ba9af4661833e97f87c3dcaa0e6ed74c1bd24395a7dd0f