4 matches found
Apple QuickTime Remote Code Execution Vulnerability
The host is installed with Apple QuickTime and is prone to remote code execution vulnerability. OpenVAS Vulnerability Test $Id: gbapplequicktimecodeexecvulnwin.nasl 5263 2017-02-10 13:45:51Z teissa $ Apple QuickTime Remote Code Execution Vulnerability Authors: Antu Sanadi Copyright: Copyright c...
QuickTime QTPlugin.ocx控件_Marshaled_pUnk参数验证漏洞
Apple QuickTime是一款非常流行的多媒体播放器。 QuickTime ActiveX控件(QTPlugin.ocx)实现了IPersistPropertyBag2::Read(1000E330)来处理所接收到的param: .text:1000E330 .text:1000E330 ; =============== S U B R O U T I N E ======================================= .text:1000E330 .text:1000E330 .text:1000E330 sub1000E330 proc near ; DA...
CVE-2010-1818
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the MarshaledpUnk attribute, which triggers unmarshalling of an untrusted pointer...
CVE-2010-1818
CVE-2010-1818 affects Apple QuickTime QTPlugin.ocx (QuickTime 6.x and 7.x before 7.6.8). The vulnerability arises from an input validation error in the _Marshaled_pUnk parameter, triggering unmarshalling of an untrusted pointer and allowing remote code execution with the user’s privileges. Public...