Lucene search

[email protected]CVE-2008-0033

HistoryJan 16, 2008 - 3:00 a.m.

CVE-2008-0033

2008-01-1603:00:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2008-0033

apple quicktime

remote attackers

denial of service

arbitrary code

movie file

vulnerability

nvd

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.694 Medium

EPSS

Percentile

98.0%

JSON

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a movie file with Image Descriptor (IDSC) atoms containing an invalid atom size, which triggers memory corruption.

CPENameOperatorVersion
apple:quicktimeapple quicktimele7.3.1.70

CPE	Name	Operator	Version
apple:quicktime	apple quicktime	le	7.3.1.70

References

docs.info.apple.com/article.html?artnum=307301

dvlabs.tippingpoint.com/advisory/TPTI-08-01

lists.apple.com/archives/security-announce/2008/Jan/msg00001.html

secunia.com/advisories/28502

www.securityfocus.com/archive/1/486413/100/0/threaded

www.securityfocus.com/bid/27299

www.securitytracker.com/id?1019221

www.us-cert.gov/cas/techalerts/TA08-016A.html

www.vupen.com/english/advisories/2008/0148

exchange.xforce.ibmcloud.com/vulnerabilities/39697

7.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.694 Medium

EPSS

Percentile

98.0%

JSON

Related for CVE-2008-0033

securityvulns2 prion1 checkpoint_advisories1 nessus2