Remote Code Execution Vulnerability in Apple QuickTime
CVE-2015-5785

Currently unrated

Key Information:

Vendor: Apple
Status: Quicktime
Vendor: CVE Published:; 25 August 2015

What is CVE-2015-5785?

Apple QuickTime versions before 7.7.8 are susceptible to a remote code execution vulnerability. This flaw allows attackers to execute arbitrary code or trigger a denial of service through specially crafted files. Exploitation could lead to memory corruption and application crashes, compromising the integrity and availability of the affected system.

References

https://support.apple.com/HT205046

x_refsource_CONFIRM

http://www.securitytracker.com/id/1033346

vdb-entryx_refsource_SECTRACK

http://lists.apple.com/archives/security-announce/2015/Au...

vendor-advisoryx_refsource_APPLE

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2015
Vulnerability Reserved
Aug 6, 2015