Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) CoreVideo.dll, (2) CoreGraphics.dll, or (3) CoreAudioToolbox.dll that is located in the same folder as a .pic image file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple QuickTime Picture Viewer 安全漏洞
Vulnerability Description
Apple QuickTime是美国苹果(Apple)公司开发的一款多媒体播放软件。该软件能够处理数字视频、媒体段落等多种资源。 Apple QuickTime 7.6.7及之前的版本中的Picture Viewer程序中存在路径搜索问题。如果攻击者在图像文件所在的同一目录中放置了恶意制作的DLL文件,则通过QuickTime Picture Viewer打开该图像文件可能导致任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A