This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.
The remote Mac OS X host contains an application that is affected by
The version of QuickTime installed on the remote Mac OS X host is
older than 7.4.5. Such versions contain several vulnerabilities :
- Untrusted Java applets may obtain elevated privileges
- Downloading a movie file may lead to information
- Viewing a specially crafted movie file may lead to a
program crash or arbitrary code execution
(CVE-2008-1015, CVE-2008-1016, CVE-2008-1017,
CVE-2008-1018, CVE-2008-1021, CVE-2008-1022).
- Opening a specially crafted PICT image file may lead
to a program crash or arbitrary code execution
(CVE-2008-1019, CVE-2008-1020, CVE-2008-1023).
See also :
Either use QuickTime's Software Update preference to upgrade to the
latest version or manually upgrade to QuickTime 7.4.5 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 31736 (macosx_Quicktime745.nasl)
Bugtraq ID: 28583
CVE ID: CVE-2008-1013CVE-2008-1014CVE-2008-1015CVE-2008-1016CVE-2008-1017CVE-2008-1018CVE-2008-1019CVE-2008-1020CVE-2008-1021CVE-2008-1022CVE-2008-1023
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.