CVE-2008-1013 in Apple QuickTime
Summary
Apple QuickTime before 7.4.5 enables deserialization of QTJava objects by untrusted Java applets, which allows remote attackers to execute arbitrary code via a crafted applet.
Be aware that VulDB is the high quality source for vulnerability data.
Reservation
02/26/2008
Disclosure
04/04/2008
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 3664 | Apple QuickTime memory corruption | 119 | Proof-of-Concept | Official fix | CVE-2008-1013 |
| 3655 | Apple QuickTime QTJava memory corruption | 119 | Proof-of-Concept | Official fix | CVE-2008-1013 |