Apple QuickTime "mvhd" Atom Buffer Overflow Vulnerability (CVE-2014-4979)

  Severity: CRITICAL
  CVE Identifier: CVE-2014-4979
  Advisory Date: JUL 21, 2015

  DESCRIPTION

Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed version number and flags in an mvhd atom.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1006218
  Trend Micro Deep Security DPI Rule Name: 1006218 - Apple QuickTime "mvhd" Atom Buffer Overflow Vulnerability (CVE-2014-4979)

  AFFECTED SOFTWARE AND VERSION

  • apple quicktime

Featured Stories