Lucene search
HistoryOct 12, 2011 - 6:55 p.m.
CVE-2011-3252
cve-2011-3252
buffer overflow
coreaudio
apple itunes
remote attackers
arbitrary code
denial of service
aac stream
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.087 Low
EPSS
Percentile
94.4%
Buffer overflow in CoreAudio, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Advanced Audio Coding (AAC) stream.
Related
seebug
seebug
Apple iTunes CoreAudio缓冲区溢出漏洞
2011-10-27 00:00:00
Apple iTunes多个安全漏洞
2011-10-13 00:00:00
prion
prion
Buffer overflow
2011-10-12 18:55:00
securityvulns
securityvulns
ZDI-11-304 : Apple Quicktime Advanced Audio Codec Frame Parsing Remote Code Execution Vulnerability
2011-10-31 00:00:00
Apple OS X multiple security vulnerabilities
2012-02-03 00:00:00
APPLE-SA-2012-02-01-1 OS X Lion v10.7.3 and Security Update 2012-001
2012-02-03 00:00:00
zdi
zdi
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2012-001) (BEAST)
2012-02-02 00:00:00
Apple iTunes < 10.5 Multiple Vulnerabilities (uncredentialed check)
2011-10-12 00:00:00
Apple iTunes < 10.5 Multiple Vulnerabilities (credentialed check)
2011-10-12 00:00:00
openvas
openvas
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
Apple iTunes Multiple Vulnerabilities - Oct 11
2011-10-20 00:00:00
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.087 Low
EPSS
Percentile
94.4%
Related for CVE-2011-3252