Quicktime HTTP response buffer overflow 0-day

Here we go again. Another 0-day vulnerability (this one appears to not be responsibly disclosed) in Apple Quicktime. As implied by "0-day" there is no patch, and no workarounds are immediately obvious. Later tonight I will write and test a Snort signature for this.

The announcement is at http://aluigi.altervista.org/adv/quicktimebof-adv.txt and public exploit code is availble on that site and on milw0rm - http://www.milw0rm.com/exploits/4885

The vulnerability appears to be a buffer overflow in Quicktime's handling of HTTP response codes. Because this all happens on port 80, it may be difficult to block. Application proxies are probably the best countermeasure in this case.