Lucene search
AppleCVE-2011-3459HistoryFeb 02, 2012 - 6:55 p.m.
CVE-2011-3459
2012-02-0218:55:01
CWE-189
apple
web.nvd.nist.gov
32
cve-2011-3459
quicktime
apple
mac os x
buffer overflow
remote code execution
denial of service
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
High
EPSS
0.033
Percentile
91.3%
Off-by-one error in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted rdrf atom in a movie file that triggers a buffer overflow.
Affected configurations
Node
applemac_os_xRangeβ€10.7.2
ORapplemac_os_xMatch10.6.0
ORapplemac_os_xMatch10.6.1
ORapplemac_os_xMatch10.6.2
ORapplemac_os_xMatch10.6.3
ORapplemac_os_xMatch10.6.4
ORapplemac_os_xMatch10.6.5
ORapplemac_os_xMatch10.6.6
ORapplemac_os_xMatch10.6.7
ORapplemac_os_xMatch10.6.8
ORapplemac_os_xMatch10.7.0
ORapplemac_os_xMatch10.7.1
ORapplemac_os_x_serverRangeβ€10.7.2
ORapplemac_os_x_serverMatch10.6.0
ORapplemac_os_x_serverMatch10.6.1
ORapplemac_os_x_serverMatch10.6.2
ORapplemac_os_x_serverMatch10.6.3
ORapplemac_os_x_serverMatch10.6.4
ORapplemac_os_x_serverMatch10.6.5
ORapplemac_os_x_serverMatch10.6.6
ORapplemac_os_x_serverMatch10.6.7
ORapplemac_os_x_serverMatch10.6.8
ORapplemac_os_x_serverMatch10.7.0
ORapplemac_os_x_serverMatch10.7.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.0 | cpe:2.3:o:apple:mac_os_x:10.6.0:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.1 | cpe:2.3:o:apple:mac_os_x:10.6.1:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.2 | cpe:2.3:o:apple:mac_os_x:10.6.2:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.3 | cpe:2.3:o:apple:mac_os_x:10.6.3:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.4 | cpe:2.3:o:apple:mac_os_x:10.6.4:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.5 | cpe:2.3:o:apple:mac_os_x:10.6.5:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.6 | cpe:2.3:o:apple:mac_os_x:10.6.6:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.7 | cpe:2.3:o:apple:mac_os_x:10.6.7:*:*:*:*:*:*:* |
| apple | mac_os_x | 10.6.8 | cpe:2.3:o:apple:mac_os_x:10.6.8:*:*:*:*:*:*:* |
Related
seebug
seebug
Apple Mac OS XθΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2011-3459)
2012-05-17 00:00:00
Apple Mac OS X (rdrf atoms)θΏη¨δ»£η ζ§θ‘ζΌζ΄(CVE-2011-3459)
2012-02-06 00:00:00
prion
prion
Buffer overflow
2012-02-02 18:55:00
zdi
zdi
Apple Quicktime Dataref URI Buffer Remote Code Execution Vulnerability
2012-06-27 00:00:00
cvelist
cvelist
CVE-2011-3459
2012-02-02 18:00:00
nvd
nvd
CVE-2011-3459
2012-02-02 18:55:01
openvas
openvas
Apple QuickTime Multiple Vulnerabilities - (Windows)
2012-05-18 00:00:00
Apple QuickTime Multiple Vulnerabilities - Windows
2012-05-18 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
nessus
nessus
QuickTime < 7.7.2 Multiple Vulnerabilities
2012-05-18 00:00:00
QuickTime < 7.7.2 Multiple Vulnerabilities
2012-05-18 00:00:00
QuickTime < 7.7.2 Multiple Vulnerabilities (Windows)
2012-05-16 00:00:00
securityvulns
securityvulns
APPLE-SA-2012-05-15-1 QuickTime 7.7.2
2012-05-21 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-27 00:00:00
Apple OS X multiple security vulnerabilities
2012-02-03 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
High
EPSS
0.033
Percentile
91.3%
Related for CVE-2011-3459