Thursday, November 11, 2010

Apple Quicktime: Remote Code Execution Vulnerability

Users of Apple Quicktime please be advised of a Remote Code Execution vulnerability that has been identified.

To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

Amplify’d from www.criticalwatch.com

ZDI-10-244: [ZDI-10-244] Apple Quicktime Movie Malformed H.264 Sample Remote Code Execution Vulnerability

-- Affected Products:
Apple Quicktime
-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Apple QuickTime Player. User interaction is
required to exploit this vulnerability in that the target must visit a
malicious page or open a malicious file.Read more at www.criticalwatch.com
 

No comments:

Post a Comment