Vulnerabilities

CVE-2008-1585

by Fred · 10/06/2008

Apple QuickTime before 7.5 uses the url.dll!FileProtocolHandler handler for unrecognized URIs in qt:next attributes within SMIL text in video files, which sends these URIs to explorer.exe and thereby allows remote attackers to execute arbitrary programs, as originally demonstrated by crafted file: URLs.

Date published : 2008-06-10

http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html

http://lists.apple.com/archives/security-announce/2008//Jul/msg00000.html

Similar

Tags: Cybersecurity Alert