|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> MacOS X Local Security Checks >> Quicktime < 7.1 (Mac OS X) Vulnerability Assessment Details
|
Quicktime < 7.1 (Mac OS X) |
||
|
Checks version of Quicktime on Mac OS X Detailed Explanation for this Vulnerability Assessment Summary : The remote version of QuickTime is affected by multiple overflow vulnerabilities. Description : The remote Mac OS X host is running a version of Quicktime prior to 7.1. The remote version of Quicktime is vulnerable to various integer and buffer overflows involving specially-crafted image and media files. A possible hacker may be able to leverage these issues to execute arbitrary code on the remote host by sending a malformed file to a victim and having him open it using QuickTime player. See also : http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045979.html http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045981.html http://docs.info.apple.com/article.html?artnum=303752 Solution : Upgrade to Quicktime version 7.1 or later. Network Security Threat Level: High / CVSS Base Score : 7.0 (AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N) Networks Security ID: 17074, 17953 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2007 Tenable Network Security |
||
|
Wireless Networking, WiFi |
|
||
|
No Discussions have been posted on this vulnerability. |