9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.404 Medium
EPSS
Percentile
97.3%
Versions of QuickTime earlier than 7.6.7 are potentially affected by a stack overflow in the application’s error logging when debug logging is enabled. If an attacker can trick a user on the host into viewing a specially crafted movie file, he may be able to cause an application crash or even execute arbitrary code subject to the user’s privileges. Note that this issue only affects QuickTime on Windows.
Binary data 801202.prm