CVE-2014-4979

CVE-2014-4979

EPSS 3.6%

Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed version number and flags in an mvhd atom.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://support.apple.com/kb/HT6493 http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/68852 http://www.securitytracker.com/id/1030638 http://zerodayinitiative.com/advisories/ZDI-14-264/