The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2010-08-31T19:25:00

Updated: 2024-08-07T01:35:53.749Z

Reserved: 2010-05-06T00:00:00

Link: CVE-2010-1818

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-08-31T20:00:01.420

Modified: 2017-09-27T01:29:00.260

Link: CVE-2010-1818

cve-icon Redhat

No data.