Apple QuickTime Player Has an Unspecified Flaw That Permits Remote Code Execution
|
|
SecurityTracker Alert ID: 1009283 |
|
SecurityTracker URL: http://securitytracker.com/id/1009283
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Mar 2 2004
|
Impact:
Execution of arbitrary code via network, User access via network
|
|
|
Description:
An unspecified vulnerability was reported in Apple's QuickTime media player. A remote user can cause arbitrary code to be executed on a target user's system.
eEye Digital Security issued a preliminary notice of an upcoming advisory. Apple's QuickTime media player reportedly contains a vulnerability that allows a remote user to cause arbitrary code to be executed "with little user interaction."
All affected QuickTime platforms are affected, the report said.
No further information was provided pending a vendor fix.
The vendor was reportedly notified on February 18, 2004.
|
Impact:
A remote user can cause arbitrary code to be executed on the target system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.apple.com/ (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
MacOS, UNIX (OS X), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Tue, 02 Mar 2004 00:35:35 -0500
Subject: http://www.eeye.com/html/Research/Upcoming/20040218.html
|
http://www.eeye.com/html/Research/Upcoming/20040218.html
eEye Digital Security issued a preliminary notice (EEYEB-20040218) of an upcoming
advisory. Apple's QuickTime media player reportedly contains a vulnerability that allows
a remote user to cause arbitrary code to be executed "with little user interaction."
The vendor was reportedly notified on February 18, 2004.
All affected QuickTime platforms are affected, the report said.
No further information was provided pending a vendor fix.
|
|
