Apple.QuickTime.Plugin.Arbitrary.Script.Execution.Weakness

description-logoDescription

This indicates a security bypass vulnerability in the Apple QuickTime browser plug-in. The flaw is caused by lacking of security checks on the "qtnext" parameter of the QuickTime Media Link files "embed" tag.

affected-products-logoAffected Products

Apple QuickTime Plug-In 7.1.3

Impact logoImpact

Arbitrary script code execution.

recomended-action-logoRecommended Actions

As of October 17, 2006, Fortinet is unaware of any vendor-released updates for this vulnerability.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)