Apple QuickTime QTJava 'toQTPointer()' Arbitrary Memory Access Vulnerability
Schweregrad: : Alto
Identificador(es) CVE: : CVE-2007-2175
Data do informe: 21 julho 2015
Descrição
Apple QuickTime Java extensions (QTJava.dll), as used in Safari, when Java is enabled, allows remote attackers to execute arbitrary code via parameters to the toQTPointer method in quicktime.util.QTHandleRef, which can be used to modify arbitrary memory when creating QTPointerRef objects.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1006001
Trend Micro Deep Security DPI Rule Name: 1006001 - Apple QuickTime QTJava 'toQTPointer()' Arbitrary Memory Access Vulnerability
Software infectado e versão:
- Apple Safari