Lucene search

[email protected]CVE-2008-0031

HistoryJan 16, 2008 - 2:00 a.m.

CVE-2008-0031

2008-01-1602:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2008-0031

apple quicktime

denial of service

memory corruption

nvd

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

7.4 High

AI Score

Confidence

High

0.049 Low

EPSS

Percentile

92.8%

JSON

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Sorenson 3 video file, which triggers memory corruption.

Affected configurations

NVD

Node

applequicktimeRange≤7.3

CPENameOperatorVersion
apple:quicktimeapple quicktimele7.3

CPE	Name	Operator	Version
apple:quicktime	apple quicktime	le	7.3

References

docs.info.apple.com/article.html?artnum=307301

lists.apple.com/archives/security-announce/2008/Jan/msg00001.html

secunia.com/advisories/28502

www.securityfocus.com/bid/27298

www.securitytracker.com/id?1019221

www.us-cert.gov/cas/techalerts/TA08-016A.html

www.vupen.com/english/advisories/2008/0148

exchange.xforce.ibmcloud.com/vulnerabilities/39695

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

7.4 High

AI Score

Confidence

High

0.049 Low

EPSS

Percentile

92.8%

JSON

Related for CVE-2008-0031

cvelist1 nvd1 prion1 nessus2