This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.
The remote Mac OS X host contains an application that is affected by
The version of QuickTime installed on the remote Mac OS X host is
older than 7.4.5. Such versions contain several vulnerabilities :
- Untrusted Java applets may obtain elevated privileges
- Downloading a movie file may lead to information
- Viewing a specially crafted movie file may lead to a
program crash or arbitrary code execution
(CVE-2008-1015, CVE-2008-1016, CVE-2008-1017,
CVE-2008-1018, CVE-2008-1021, CVE-2008-1022).
- Opening a specially crafted PICT image file may lead
to a program crash or arbitrary code execution
(CVE-2008-1019, CVE-2008-1020, CVE-2008-1023).
See also :
Either use QuickTime's Software Update preference to upgrade to the
latest version or manually upgrade to QuickTime 7.4.5 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false
Family: MacOS X Local Security Checks
Nessus Plugin ID: 31736 (macosx_Quicktime745.nasl)
Bugtraq ID: 28583
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now