Apple QuickTime Multiple Vulnerabilities
RISK: Medium Risk
Multiple vulnerabilities have been identified in Apple QuickTime, which could be exploited by remote attackers to take complete control of an affected system. These issues are caused by memory corruption and implementation errors when processing specially crafted PICT images, AAC-encoded or Indeo video codec media contents, and "file:" URLs, which could be exploited by remote attackers to crash an affected application, launch arbitrary applications and files on a vulnerable system, or execute malicious code by tricking a user into visiting a specially crafted web page or opening a malformed file.
Impact
- Remote Code Execution
System / Technologies affected
- Apple QuickTime versions prior to 7.5
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Upgrade to Apple QuickTime version 7.5 :
- http://www.apple.com/quicktime/download/
Vulnerability Identifier
Source
Related Link
Share with