Tenable801196.PRMQuickTime < 7.7.1 Multiple Vulnerabilities
Versions of QuickTime earlier than 7.7.1 are potentially affected by multiple vulnerabilities :
-
A buffer overflow exists in the handling of H.264 encoded movie files. (CVE-2011-3219)
-
An uninitialized memory access issue exists in the handling of URL data handlers within movie file. (CVE-2011-3220)
-
An implementation issue exists in the handling of the atom hierarchy within a movie files. (CVE-2011-3221)
-
A cross-site scripting issue exists int he Save for Web export. (CVE-2011-3218)
-
A buffer overflow exists in the handling of FlashPix files. (CVE-2011-3222)
-
A buffer overflow exists in the handling of FLIC files. (CVE-2011-3223)
-
Multiple memory corruption issues exist in the handling of movie files. (CVE-2011-3228)
-
An integer overflow issue exists in the handling of PICT files. (CVE-2011-3247)
-
A signedness issue exists in the handling of font tables embedded n QuickTime movie files.
-
A buffer overflow issue exists in the handling of FLC encoded movie files. (CVE-2011-3249)
-
An integer overflow issue exists in the handling of JPEG2000 encoded movie files. (CVE-2011-3250)
-
A memory corruption issue exists in the handling of TKHD atoms in QuickTime movie files. (CVE-2011-3251)
Binary data 801196.prmReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3218
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3219
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3220
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3221
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3222
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3223
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3228
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3247
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3248
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3249
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3250
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3251
support.apple.com/kb/HT5016
Related
