The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer.
AV:N/AC:M/Au:N/C:C/I:C/A:CApple Quicktime
APPApple6.06.0.06.0.16.0.26.16.1.06.1.16.2.06.3.06.4.06.56.5.06.5.16.5.27.0+ 32 więcej
Related vulnerabilities
Buffer overflow in QuickTime before 7.7.1 for Windows allows remote attackers to execute arbitrary code.
Untrusted search path vulnerability in Installer of QuickTime for Windows allows an attacker to gain privilege...
QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial o...
Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service (memory corrupt...
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a d...