Summary
The remote host is using QuickTime, a popular media player/Plug-in which handles many Media files.
This version has a Heap overflow which may allow an attacker to execute arbitrary code on this host, with the rights of the user running QuickTime.
More Info: http://eeye.com/html/Research/Advisories/AD20040502.html
Solution
Uninstall this software or upgrade to version 6.5.1 or higher.
Severity
Classification
-
CVE CVE-2004-0431 -
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft Internet Explorer XSS Vulnerability - July09
- Microsoft Internet Explorer Anti-XSS Filter Vulnerabilities
- Microsoft Update to Improve Cryptography and Digital Certificate Handling (2854544)
- Fraudulent Digital Certificates Spoofing Vulnerability (2524375)
- Microsoft Digital Certificates Security Advisory (2916652)