4 matches found
Apple QuickTime Plug-In Security Bypass (CVE-2006-4965; CVE-2007-4673)
Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying still image files as well as numerous audio and video formats. It also provides libraries and plugins for other applications, such as browsers, to read QuickTime media...
CVE-2007-4673
Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista allows remote attackers to execute arbitrary commands via a URL in the qtnext field in a crafted QTL file. NOTE: this issue may be related to CVE-2006-4965 or CVE-2007-5045...
CVE-2007-4673
CVE-2007-4673 is an argument-injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista. The issue allows remote attackers to execute arbitrary commands via a URL contained in the qtnext field of a crafted QuickTime QTL file. The description notes potential relation to CVE-2006-4...
QuickTime < 7.2 Security Update (Windows)
The version of QuickTime installed on the remote Windows host may allow a remote attacker to execute arbitrary code if he can trick a user on the affected system into opening a specially crafted QTL file. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid26916;...