Lucene search

K
cveAppleCVE-2010-3800
HistoryDec 09, 2010 - 8:00 p.m.

CVE-2010-3800

2010-12-0920:00:17
CWE-119
apple
web.nvd.nist.gov
32
cve-2010-3800
apple quicktime
remote code execution
denial of service
memory corruption
application crash

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.048

Percentile

92.9%

Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file.

Affected configurations

Nvd
Node
applequicktimeRange7.6.8
OR
applequicktimeMatch3.0
OR
applequicktimeMatch4.1.2
OR
applequicktimeMatch5.0
OR
applequicktimeMatch5.0.1
OR
applequicktimeMatch5.0.2
OR
applequicktimeMatch6.0
OR
applequicktimeMatch6.0.0
OR
applequicktimeMatch6.0.1
OR
applequicktimeMatch6.0.2
OR
applequicktimeMatch6.1
OR
applequicktimeMatch6.1.0
OR
applequicktimeMatch6.1.1
OR
applequicktimeMatch6.2.0
OR
applequicktimeMatch6.3.0
OR
applequicktimeMatch6.4.0
OR
applequicktimeMatch6.5
OR
applequicktimeMatch6.5.0
OR
applequicktimeMatch6.5.1
OR
applequicktimeMatch6.5.2
OR
applequicktimeMatch7.0
OR
applequicktimeMatch7.0.0
OR
applequicktimeMatch7.0.1
OR
applequicktimeMatch7.0.2
OR
applequicktimeMatch7.0.3
OR
applequicktimeMatch7.0.4
OR
applequicktimeMatch7.1
OR
applequicktimeMatch7.1.0
OR
applequicktimeMatch7.1.1
OR
applequicktimeMatch7.1.2
OR
applequicktimeMatch7.1.3
OR
applequicktimeMatch7.1.4
OR
applequicktimeMatch7.1.5
OR
applequicktimeMatch7.1.6
OR
applequicktimeMatch7.2
OR
applequicktimeMatch7.2.1
OR
applequicktimeMatch7.3
OR
applequicktimeMatch7.3.0
OR
applequicktimeMatch7.3.1
OR
applequicktimeMatch7.3.1.70
OR
applequicktimeMatch7.4
OR
applequicktimeMatch7.4.0
OR
applequicktimeMatch7.4.1
OR
applequicktimeMatch7.4.5
OR
applequicktimeMatch7.5.0
OR
applequicktimeMatch7.5.5
OR
applequicktimeMatch7.6.0
OR
applequicktimeMatch7.6.1
OR
applequicktimeMatch7.6.2
OR
applequicktimeMatch7.6.5
OR
applequicktimeMatch7.6.6
OR
applequicktimeMatch7.6.7
VendorProductVersionCPE
applequicktime*cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*
applequicktime3.0cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*
applequicktime4.1.2cpe:2.3:a:apple:quicktime:4.1.2:*:*:*:*:*:*:*
applequicktime5.0cpe:2.3:a:apple:quicktime:5.0:*:*:*:*:*:*:*
applequicktime5.0.1cpe:2.3:a:apple:quicktime:5.0.1:*:*:*:*:*:*:*
applequicktime5.0.2cpe:2.3:a:apple:quicktime:5.0.2:*:*:*:*:*:*:*
applequicktime6.0cpe:2.3:a:apple:quicktime:6.0:*:*:*:*:*:*:*
applequicktime6.0.0cpe:2.3:a:apple:quicktime:6.0.0:*:*:*:*:*:*:*
applequicktime6.0.1cpe:2.3:a:apple:quicktime:6.0.1:*:*:*:*:*:*:*
applequicktime6.0.2cpe:2.3:a:apple:quicktime:6.0.2:*:*:*:*:*:*:*
Rows per page:
1-10 of 521

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.048

Percentile

92.9%