Lucene search

K
nessusTenable801202.PRM
HistoryAug 13, 2010 - 12:00 a.m.

QuickTime < 7.6.7 QuickTimeStreaming.qtx SMIL File Debug Logging Overflow (Windows)

2010-08-1300:00:00
Tenable
www.tenable.com
8

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.404 Medium

EPSS

Percentile

97.3%

Versions of QuickTime earlier than 7.6.7 are potentially affected by a stack overflow in the application’s error logging when debug logging is enabled. If an attacker can trick a user on the host into viewing a specially crafted movie file, he may be able to cause an application crash or even execute arbitrary code subject to the user’s privileges. Note that this issue only affects QuickTime on Windows.

Binary data 801202.prm

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.404 Medium

EPSS

Percentile

97.3%