Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable8140.PRM
HistoryFeb 26, 2014 - 12:00 a.m.

Apple Quicktime 7.7.5 Multiple Vulnerabilities

2014-02-2600:00:00
Tenable
www.tenable.com
15

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.037 Low

EPSS

Percentile

91.8%

JSON

Versions older than Quicktime 7.7.5 contain the following vulnerabilities:

  • Multiple buffer overflow vulnerabilities, which can be leveraged by an attacker to execute arbitrary code or application termination (2014-1246, CVE-2014-1248, CVE-2014-1249)

  • An out-of-bounds byte swapping issue in the handling of ‘ttfo’ elements, which can be leveraged by an attacker to execute arbitrary code or application termination (CVE-2014-1250)

  • A signedness issue in the handling of ‘stsz’ atoms, which can be leveraged by an attacker to execute arbitrary code or application termination (CVE-2014-1245)

  • A memory corruption issue when handling the ‘dref’ atoms, which can be leveraged by an attacker to execute arbitrary code or application termination (CVE-2014-1247)

Binary data 8140.prm
VendorProductVersionCPE
applequicktimecpe:/a:apple:quicktime

Related

nessus 4
openvas 2
kaspersky 1
securityvulns 4
nvd 5
cvelist 5
cve 5
prion 5
zdi 2
seebug 1
nessus
nessus
Quicktime (for Windows) < 7.7.5 Multiple Vulnerabilities (deprecated)
2014-02-26 00:00:00
QuickTime < 7.7.5 Multiple Vulnerabilities (Windows)
2014-02-26 00:00:00
Mac OS X 10.9.x < 10.9.2 Multiple Vulnerabilities
2014-02-25 00:00:00
openvas
openvas
Apple QuickTime Multiple Vulnerabilities (Mar 2014) - Windows
2014-03-04 00:00:00
Apple Mac OS X Multiple Vulnerabilities -04 (Sep 2014)
2014-09-22 00:00:00
kaspersky
kaspersky
KLA10016 Multiple vulnerabilities in Apple QuickTime
2014-02-25 00:00:00
securityvulns
securityvulns
Apple QuickTime multiple security vulnerabilities
2014-02-28 00:00:00
APPLE-SA-2014-02-25-3 QuickTime 7.7.5
2014-02-28 00:00:00
Apple Mac OS X multiple security vulnerabilities
2014-02-28 00:00:00
nvd
nvd
CVE-2014-1248
2014-02-27 01:55:03
CVE-2014-1250
2014-02-27 01:55:03
CVE-2014-1247
2014-02-27 01:55:03
cvelist
cvelist
CVE-2014-1247
2014-02-27 01:00:00
CVE-2014-1245
2014-02-27 01:00:00
CVE-2014-1248
2014-02-27 01:00:00
cve
cve
CVE-2014-1250
2014-02-27 01:55:03
CVE-2014-1247
2014-02-27 01:55:03
CVE-2014-1245
2014-02-27 01:55:03
prion
prion
Out-of-bounds
2014-02-27 01:55:00
Memory corruption
2014-02-27 01:55:00
Buffer overflow
2014-02-27 01:55:00
zdi
zdi
Apple QuickTime dref Atom Remote Code Execution Vulnerability
2014-04-03 00:00:00
Apple QuickTime stsz Atom Remote Code Execution Vulnerability
2014-04-03 00:00:00
seebug
seebug
Apple Mac OS X多个安全漏洞(APPLE-SA-2014-02-25-1)
2014-02-26 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.037 Low

EPSS

Percentile

91.8%

JSON
Related for 8140.PRM
nessus4openvas2kaspersky1securityvulns4nvd5cvelist5cve5prion5zdi2seebug1