CVE Reference: CVE-2012-3751

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-3751

Description:
Use-after-free vulnerability in the plugin in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with a crafted _qtactivex_ parameter in an OBJECT element.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/79897

SAID
  Secunia Advisory: SA51226

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:16166

CONFIRM
  http://support.apple.com/kb/HT5581

APPLE
  http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html


Return to the previous page.