Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
SMTP:VULN:APPLE-QUIKTME-CE |
|---|---|
Severity |
Major |
Recommended |
Yes |
Category |
SMTP |
Keywords |
Apple QuickTime Crafted Movie Files Remote Code Execution |
Release Date |
2017/12/21 |
Update Number |
3019 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
SMTP: Apple QuickTime Crafted Movie Files Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Apple QuickTime. A successful exploit can lead to remote code execution.
Extended Description
QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3663, CVE-2015-3666, and CVE-2015-3667.
Affected Products
- Apple mac_os_x 10.10.3
- Apple quicktime 7.7.6
References
- CVE: CVE-2015-3668