Lucene search

[email protected]CVE-2011-3250

HistoryOct 28, 2011 - 2:49 a.m.

CVE-2011-3250

2011-10-2802:49:53

CWE-189

[email protected]

web.nvd.nist.gov

103

cve-2011-3250

apple quicktime

integer overflow

arbitrary code execution

denial of service

jpeg2000

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

High

EPSS

0.794

Percentile

98.3%

JSON

Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with JPEG2000 encoding.

Affected configurations

NVD

Node

applequicktimeRange≤7.7

applequicktimeMatch3.0

applequicktimeMatch4.1.2

applequicktimeMatch5.0

applequicktimeMatch5.0.1

applequicktimeMatch5.0.2

applequicktimeMatch6.0

applequicktimeMatch6.0.0

applequicktimeMatch6.0.1

applequicktimeMatch6.0.2

applequicktimeMatch6.1

applequicktimeMatch6.1.0

applequicktimeMatch6.1.1

applequicktimeMatch6.2.0

applequicktimeMatch6.3.0

applequicktimeMatch6.4.0

applequicktimeMatch6.5

applequicktimeMatch6.5.0

applequicktimeMatch6.5.1

applequicktimeMatch6.5.2

applequicktimeMatch7.0

applequicktimeMatch7.0.0

applequicktimeMatch7.0.1

applequicktimeMatch7.0.2

applequicktimeMatch7.0.3

applequicktimeMatch7.0.4

applequicktimeMatch7.1

applequicktimeMatch7.1.0

applequicktimeMatch7.1.1

applequicktimeMatch7.1.2

applequicktimeMatch7.1.3

applequicktimeMatch7.1.4

applequicktimeMatch7.1.5

applequicktimeMatch7.1.6

applequicktimeMatch7.2

applequicktimeMatch7.2.0

applequicktimeMatch7.2.1

applequicktimeMatch7.3

applequicktimeMatch7.3.0

applequicktimeMatch7.3.1

applequicktimeMatch7.3.1.70

applequicktimeMatch7.4

applequicktimeMatch7.4.0

applequicktimeMatch7.4.1

applequicktimeMatch7.4.5

applequicktimeMatch7.5.0

applequicktimeMatch7.5.5

applequicktimeMatch7.6.0

applequicktimeMatch7.6.1

applequicktimeMatch7.6.2

applequicktimeMatch7.6.5

applequicktimeMatch7.6.6

applequicktimeMatch7.6.7

applequicktimeMatch7.6.8

applequicktimeMatch7.6.9

AND

microsoftwindows_7

microsoftwindows_vista

microsoftwindows_xpsp2

microsoftwindows_xpsp3

VendorProductVersionCPE
applequicktime7.1.0cpe:/a:apple:quicktime:7.1.0:::
applequicktimecpe:/a:apple:quicktime::::
applequicktime7.4cpe:/a:apple:quicktime:7.4:::
applequicktime7.1.1cpe:/a:apple:quicktime:7.1.1:::
applequicktime7.4.0cpe:/a:apple:quicktime:7.4.0:::
applequicktime6.0cpe:/a:apple:quicktime:6.0:::
applequicktime7.1cpe:/a:apple:quicktime:7.1:::
applequicktime6.5.1cpe:/a:apple:quicktime:6.5.1:::
applequicktime7.3.0cpe:/a:apple:quicktime:7.3.0:::
applequicktime7.0.3cpe:/a:apple:quicktime:7.0.3:::

Vendor	Product	Version	CPE
apple	quicktime	7.1.0	cpe:/a:apple:quicktime:7.1.0:::
apple	quicktime		cpe:/a:apple:quicktime::::
apple	quicktime	7.4	cpe:/a:apple:quicktime:7.4:::
apple	quicktime	7.1.1	cpe:/a:apple:quicktime:7.1.1:::
apple	quicktime	7.4.0	cpe:/a:apple:quicktime:7.4.0:::
apple	quicktime	6.0	cpe:/a:apple:quicktime:6.0:::
apple	quicktime	7.1	cpe:/a:apple:quicktime:7.1:::
apple	quicktime	6.5.1	cpe:/a:apple:quicktime:6.5.1:::
apple	quicktime	7.3.0	cpe:/a:apple:quicktime:7.3.0:::
apple	quicktime	7.0.3	cpe:/a:apple:quicktime:7.0.3:::