Lucene search
PRIOn knowledge basePRION:CVE-2010-1818HistoryAug 31, 2010 - 8:00 p.m.
Null pointer dereference
2010-08-3120:00:00
PRIOn knowledge base
www.prio-n.com
3
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer.
References
lists.apple.com/archives/security-announce/2010/Sep/msg00003.html
reversemode.com/index.php?option=com_content&task=view&id=69&Itemid=1
support.apple.com/kb/ht4339
threatpost.com/en_us/blogs/new-remote-flaw-apple-quicktime-bypasses-aslr-and-dep-083010
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7523
www.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb
Related
cve
cve
CVE-2010-1818
2010-08-31 20:00:01
zdi
zdi
Apple QuickTime ActiveX _Marshaled_pUnk Remote Code Execution Vulnerability
2010-08-31 00:00:00
saint
saint
Apple QuickTime QTPlugin.ocx _Marshaled_pUnk Code Execution
2010-09-20 00:00:00
Apple QuickTime QTPlugin.ocx _Marshaled_pUnk Code Execution
2010-09-20 00:00:00
Apple QuickTime QTPlugin.ocx _Marshaled_pUnk Code Execution
2010-09-20 00:00:00
canvas
canvas
Immunity Canvas: QUICK_PUNK
2010-08-31 20:00:00
checkpoint_advisories
checkpoint_advisories
Apple QuickTime QTPlugin.ocx _Marshaled_pUnk Code Execution (CVE-2010-1818)
2010-09-13 00:00:00
openvas
openvas
Apple QuickTime RCE Vulnerability
2010-09-03 00:00:00
Apple QuickTime Remote Code Execution Vulnerability
2010-09-03 00:00:00
cvelist
cvelist
CVE-2010-1818
2010-08-31 19:25:00
nvd
nvd
CVE-2010-1818
2010-08-31 20:00:01
packetstorm
packetstorm
Apple QuickTime 7.6.7 _Marshaled_pUnk Code Execution
2010-08-30 00:00:00
nessus
nessus
QuickTime < 7.6.8 Multiple Vulnerabilities (Windows)
2010-09-16 00:00:00
QuickTime < 7.6.8 Multiple Vulnerabilities (Windows) (deprecated)
2010-09-16 00:00:00
QuickTime < 7.6.8 Multiple Vulnerabilities (Windows)
2010-09-16 00:00:00