|
Family: MacOS X Local Security Checks --> Category: infos
Quicktime < 7.1.3 (Mac OS X) Vulnerability Scan
Vulnerability Scan Summary Check for Quicktime 7.1.3
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote version of QuickTime is affected by multiple overflow
vulnerabilities.
Description :
The remote Mac OS X host is running a version of Quicktime prior to
7.1.3.
The remote version of Quicktime is vulnerable to various integer and
buffer overflows involving specially-crafted image and media files.
A possible hacker may be able to leverage these issues to execute arbitrary
code on the remote host by sending a malformed file to a victim and
having him open it using QuickTime player.
See also :
http://docs.info.apple.com/article.html?artnum=304357
Solution :
Upgrade to Quicktime version 7.1.3 or later.
Threat Level:
High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|