Gravità: : Alto
  Identificatori CVE: CVE-2007-2175
  Data notifica: 21 luglio 2015

  Descrizione

Apple QuickTime Java extensions (QTJava.dll), as used in Safari, when Java is enabled, allows remote attackers to execute arbitrary code via parameters to the toQTPointer method in quicktime.util.QTHandleRef, which can be used to modify arbitrary memory when creating QTPointerRef objects.

  Informazioni esposizione:

Apply associated Trend Micro DPI Rules.

  Soluzioni

  Trend Micro Deep Security DPI Rule Number: 1006001
  Trend Micro Deep Security DPI Rule Name: 1006001 - Apple QuickTime QTJava 'toQTPointer()' Arbitrary Memory Access Vulnerability

  Software e versione interessati:

  • Apple Safari