Summary
The remote host is using QuickTime, a popular media player/Plug-in which handles many Media files.
This version has a Heap overflow which may allow an attacker to execute arbitrary code on this host, with the rights of the user running QuickTime.
More Info: http://eeye.com/html/Research/Advisories/AD20040502.html
Solution
Uninstall this software or upgrade to version 6.5.1 or higher.
Severity
Classification
-
CVE CVE-2004-0431 -
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Opera relative path directory traversal file corruption vulnerability
- Microsoft Internet Explorer Anti-XSS Filter Vulnerabilities
- CA Unicenter's File Transfer Service is running
- Microsoft RDP Server Private Key Information Disclosure Vulnerability
- Microsoft Windows Fraudulent Digital Certificates Spoofing Vulnerability