CVE-2010-1819 Information

Description

Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users and possibly remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) CoreVideo.dll (2) CoreGraphics.dll or (3) CoreAudioToolbox.dll that is located in the same folder as a .pic image file.

Reference

http://lists.apple.com/archives/security-announce/2010/Sep/msg00003.html http://support.apple.com/kb/HT4339 http://www.fortiguard.com/advisory/FGA-2010-46/