September 7, 2010

Quicktime 0-day actively used in the wild

Chris Astacio

Following our recent posting of an Apple Quicktime 0-day vulnerability, Websense Security Labs™ ThreatSeeker™ Network has discovered exploitation of this vulerability in the wild. We have protected customers from this vulnerability for at least a month now, and also provide real-time protection for customers using ACE.


Here is a screenshot of the attack page that shows the call to the vulnerable Quicktime function:

About Forcepoint

Forcepoint is the leading user and data protection cybersecurity company, entrusted to safeguard organizations while driving digital transformation and growth. Our solutions adapt in real-time to how people interact with data, providing secure access while enabling employees to create value.