Lucene search
HistorySep 06, 2011 - 3:55 p.m.
CVE-2011-0258
apple
quicktime
cve-2011-0258
windows
remote attackers
arbitrary code
denial of service
memory corruption
application crash
crafted image
mp4v tag
movie file
7.8 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.075 Low
EPSS
Percentile
94.1%
Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted image description associated with an mp4v tag in a movie file.
References
Related
securityvulns
securityvulns
ZDI-11-277: Apple QuickTime 3g2 'mp4v' atom size Remote Code Execution Vulnerability
2011-09-05 00:00:00
Apple QuickTime multiple security vulnerabilities
2011-09-05 00:00:00
cvelist
cvelist
CVE-2011-0258
2011-09-06 15:00:00
zdi
zdi
Apple QuickTime 3g2 'mp4v' atom size Remote Code Execution Vulnerability
2011-08-31 00:00:00
prion
prion
Memory corruption
2011-09-06 15:55:00
openvas
openvas
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
2011-08-18 00:00:00
Apple QuickTime Multiple Buffer Overflow Vulnerabilities - Windows
2011-08-18 00:00:00
nessus
nessus
QuickTime < 7.7 Multiple Vulnerabilities (Windows)
2011-08-04 00:00:00
7.8 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.075 Low
EPSS
Percentile
94.1%
Related for CVE-2011-0258