Lucene search

[email protected]NVD:CVE-2008-0778

HistoryFeb 14, 2008 - 12:00 p.m.

CVE-2008-0778

2008-02-1412:00:00

CWE-119

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.849 High

EPSS

Percentile

98.5%

JSON

Multiple stack-based buffer overflows in an ActiveX control in QTPlugin.ocx for Apple QuickTime 7.4.1 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the (1) SetBgColor, (2) SetHREF, (3) SetMovieName, (4) SetTarget, and (5) SetMatrix methods.

Affected configurations

NVD

Node

applequicktimeRange≤7.4.1

References

securityreason.com/securityalert/3652

www.securityfocus.com/archive/1/488045/100/0/threaded

www.securityfocus.com/bid/27769

exchange.xforce.ibmcloud.com/vulnerabilities/40475

www.exploit-db.com/exploits/5110

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.849 High

EPSS

Percentile

98.5%

JSON

Related for NVD:CVE-2008-0778

checkpoint_advisories1 prion1 cvelist1 cve1