Description:
Multiple vulnerabilities are found in Apple QuickTime. A remote attacker could exploit the vulnerabilities by enticing a user to open a specially crafted web page or movie file.
Affected Systems:
- Apple QuickTime for Windows
Impact:
Successful exploitation could lead to arbitrary code execution.
Recommendation:
Apple has indicated that the product is deprecated and no security updates for the product on Windows platform will be provided. Users of affected systems should follow the recommendations provided by the product vendor to uninstall the product.
https://support.apple.com/en-hk/HT205771
More Information:
https://www.us-cert.gov/ncas/alerts/TA16-105A
https://support.apple.com/en-hk/HT205771
http://blog.trendmicro.com/urgent-call-action-uninstall-quicktime-windows-today/
http://zerodayinitiative.com/advisories/ZDI-16-241/
http://zerodayinitiative.com/advisories/ZDI-16-242/
