Summary
This host is installed with Apple QuickTime and is prone to code execution vulnerability.
Impact
Successful exploitation will allow attackers to execute arbitrary code and compromise a vulnerable system.
Impact Level: System/Application
Solution
Upgrade to Apple QuickTime version 7.6.8 or later, For updates refer to http://support.apple.com/downloads
Insight
Flaw is due to the PictureViewer application loading libraries (e.g. CoreGraphics.dll) in an insecure manner.
Affected
Apple QuickTime version before 7.6.8 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2010-1819 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Windows)
- Adobe AIR Multiple Vulnerabilities-01 Jun14 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Linux)