Use-after-free vulnerability in Apple QuickTime ActiveX Control allows remote code execution or denial of service

Use-after-free vulnerability in Apple QuickTime ActiveX Control allows remote code execution or denial of service

CVE-2012-3754 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Use-after-free vulnerability in the Clear method in the ActiveX control in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.