Lucene search

[email protected]CVE-2008-1583

HistoryJun 10, 2008 - 6:32 p.m.

CVE-2008-1583

2008-06-1018:32:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-1583

apple quicktime

buffer overflow

denial of service

remote attackers

arbitrary code

crafted pict image

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.2%

JSON

Heap-based buffer overflow in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PICT image, a different vulnerability than CVE-2008-1581.

CPENameOperatorVersion
apple:quicktimeapple quicktimele7.4.5

CPE	Name	Operator	Version
apple:quicktime	apple quicktime	le	7.4.5

References

lists.apple.com/archives/security-announce/2008/Jun/msg00000.html

secunia.com/advisories/29293

support.apple.com/kb/HT1991

www.securityfocus.com/bid/29619

www.securityfocus.com/bid/29648

www.securitytracker.com/id?1020215

www.us-cert.gov/cas/techalerts/TA08-162C.html

www.vupen.com/english/advisories/2008/1776/references

exchange.xforce.ibmcloud.com/vulnerabilities/42945

7.7 High

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.026 Low

EPSS

Percentile

90.2%

JSON

Related for CVE-2008-1583

prion2 nessus3 openvas2 seebug1 securityvulns3 cve1