Remote Code Execution Vulnerability in QuickTime 7 by Apple
CVE-2015-5753

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime
Vendor: CVE Published:; 17 August 2015

What is CVE-2015-5753?

QuickTime 7 on Apple OS X prior to version 10.10.5 is susceptible to a remote code execution vulnerability due to improper handling of crafted files. An attacker can exploit this flaw to execute arbitrary code or trigger a denial of service, leading to memory corruption and application crashes. It is crucial for users to update their software to mitigate the risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/76340

vdb-entryx_refsource_BID

http://lists.apple.com/archives/security-announce/2015/Au...

vendor-advisoryx_refsource_APPLE

https://support.apple.com/kb/HT205031

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 17, 2015
Vulnerability Reserved
Aug 6, 2015