Remote Code Execution in QuickTime for OS X by Apple
CVE-2015-3790

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime
Vendor: CVE Published:; 17 August 2015

What is CVE-2015-3790?

A vulnerability in QuickTime 7 for Apple OS X prior to version 10.10.5 allows attackers to exploit crafted files, potentially leading to remote code execution or causing a denial of service through memory corruption and application crashes. This issue highlights the importance of regularly updating software to mitigate security risks.

References

https://support.apple.com/HT205046

x_refsource_CONFIRM

http://www.securityfocus.com/bid/76340

vdb-entryx_refsource_BID

http://lists.apple.com/archives/security-announce/2015/Au...

vendor-advisoryx_refsource_APPLE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 17, 2015
Vulnerability Reserved
May 7, 2015