Skip to main content

Apple QuickTime Remote Code Execution Vulnerability

Last Update Date: 28 Jul 2014 10:19 Release Date: 28 Jul 2014 3997 Views

RISK: High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

A vulnerability was identified in Apple QuickTime. A remote user can cause arbitrary code to be executed on the target user's system.

 

A remote user can create a specially crafted file that, when loaded by the target user, will trigger a memory corruption error and execute arbitrary code on the target system. The code will run with the privileges of the target user.

 

NOTE: There is no patch available for this vulnerability.


Impact

  • Remote Code Execution

System / Technologies affected

  • Apple QuickTime

Solutions

NOTE: There is no patch available for this vulnerability.

  • The vendor reportedly plans to issued a fix in September 2014.

Vulnerability Identifier


Source


Related Link