Lucene search
AppleCVE-2011-3458HistoryFeb 02, 2012 - 6:55 p.m.
CVE-2011-3458
2012-02-0218:55:01
CWE-264
apple
web.nvd.nist.gov
30
quicktime
apple
mac os x
cve-2011-3458
vulnerability
mp4 file
remote code execution
denial of service
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
High
EPSS
0.016
Percentile
87.4%
QuickTime in Apple Mac OS X before 10.7.3 does not prevent access to uninitialized memory locations, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP4 file.
Affected configurations
Node
applemac_os_xRangeβ€10.7.2
ORapplemac_os_xMatch10.7.0
ORapplemac_os_xMatch10.7.1
ORapplemac_os_x_serverRangeβ€10.7.2
ORapplemac_os_x_serverMatch10.7.0
ORapplemac_os_x_serverMatch10.7.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.7.0 | cpe:2.3:o:apple:mac_os_x:10.7.0:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.7.1 | cpe:2.3:o:apple:mac_os_x:10.7.1:*:*:*:*:*:*:* |
| apple | mac_os_x_server | * | cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:* |
| apple | mac_os_x_server | 10.7.0 | cpe:2.3:o:apple:mac_os_x_server:10.7.0:*:*:*:*:*:*:* |
| apple | mac_os_x_server | 10.7.1 | cpe:2.3:o:apple:mac_os_x_server:10.7.1:*:*:*:*:*:*:* |
Related
seebug
seebug
Apple Mac OS X θΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2011-3458)
2012-02-06 00:00:00
Apple Mac OS XθΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2011-3458)
2012-05-17 00:00:00
securityvulns
securityvulns
ZDI-12-130 : Apple QuickTime Player MP4A Uninitialized Pointer Remote Code Execution Vulnerability
2012-08-13 00:00:00
APPLE-SA-2012-05-15-1 QuickTime 7.7.2
2012-05-21 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-27 00:00:00
prion
prion
Memory corruption
2012-02-02 18:55:00
zdi
zdi
cvelist
cvelist
CVE-2011-3458
2012-02-02 18:00:00
nvd
nvd
CVE-2011-3458
2012-02-02 18:55:01
nessus
nessus
QuickTime < 7.7.2 Multiple Vulnerabilities
2012-05-18 00:00:00
QuickTime < 7.7.2 Multiple Vulnerabilities
2012-05-18 00:00:00
QuickTime < 7.7.2 Multiple Vulnerabilities (Windows)
2012-05-16 00:00:00
openvas
openvas
Apple QuickTime Multiple Vulnerabilities - (Windows)
2012-05-18 00:00:00
Apple QuickTime Multiple Vulnerabilities - Windows
2012-05-18 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
High
EPSS
0.016
Percentile
87.4%
Related for CVE-2011-3458