New Search

Apple Quicktime QTPlugin.ocx ActiveX IPersistPropertyBag2::Read Function _Marshaled_pUnk Memory Corruption

oval:org.mitre.oval:def:7523

The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x 7.x before 7.6.8 and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute which triggers unmarshaling of an untrusted pointer.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows 7
  • Microsoft Windows Vista
Class:
vulnerability
Reference(s):
  • CVE-2010-1818
Product(s):
  • Apple QuickTime