Summary
The remote host is using QuickTime, a popular media player/Plug-in which handles many Media files.
This version has a Heap overflow which may allow an attacker to execute arbitrary code on this host, with the rights of the user running QuickTime.
More Info: http://eeye.com/html/Research/Advisories/AD20040502.html
Solution
Uninstall this software or upgrade to version 6.5.1 or higher.
Severity
Classification
-
CVE CVE-2004-0431 -
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft SMB Signing Information Disclosure Vulnerability
- Norton Anti Virus Check
- Microsoft Windows Minimum Certificate Key Length Spoofing Vulnerability (2661254)
- Fraudulent Digital Certificates Spoofing Vulnerability (2524375)
- MS Windows Fraudulent Digital Certificates Spoofing Vulnerability (2641690)