Attack code for a newly discovered vulnerability in Apple's QuickTime has been published on the web.
The vulnerability is in the way QuickTime 7.2 and 7.3 handles RTSP media streams, according to research firm SecurityFocus.
Symantec said the exploit entails sending unsuspecting users a file with an extension typically associated with QuickTime, such as .mov or .3gp. The file is not a media file, rather it is an XML file that will force the player to open an RTSP connection on port 554 to the malicious server hosting the exploit.
According to Symantec, the QuickTime Player then contacts the remote server and receives the malformed RTSP response which triggers the buffer overflow and the execution of the attacker's shell code.
The exploit can also be used in a web browser by having the user click on a URL. The attack has been tested against "some of the common web browsers," but with Internet Explorer 6/7 and Safari 3 Beta the attack is prevented.
Firefox users are not as lucky. Because Firefox allows users to play multimedia files in QuickTime Player, the exploit works perfectly against Firefox if users have chosen QuickTime as the default player for multimedia formats, according to Symantec.