CVE-2005-2743

Description

The Java extensions for QuickTime 6.52 and earlier in Apple Mac OS X 10.3.9 allow untrusted applets to call arbitrary functions in system libraries, which allows remote attackers to execute arbitrary code.

Affected products

• Apple / mac_os_x10.3.9 – 10.3.9
• Apple / mac_os_x_server10.3.9 – 10.3.9
• Apple / quicktime6.5.2 – 6.5.2

References

• MISChttp://www.ciac.org/ciac/bulletins/p-312.shtml
• MISChttp://www.auscert.org.au/5509
• MAILING_LISThttp://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/16920/