This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
The remote host is missing a Mac OS X update that fixes a security
The remote Mac OS X host is running a version of Quicktime that is
older than Quicktime 6.5.2.
The remote version of this software reportedly fails to check bounds
properly when decoding BMP images, leading to a heap overflow.
If a remote attacker can trick a user into opening a maliciously
crafted BMP file using the affected application, this issue could be
leveraged to execute arbitrary code on the affected host.
See also :
Upgrade to Quicktime 6.5.2 or later.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.0
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 15573 (macosx_Quicktime652.nasl)
Bugtraq ID: 11322
CVE ID: CVE-2004-0926
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.