Lucene search
HistoryOct 28, 2011 - 2:49 a.m.
CVE-2011-3249
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
High
EPSS
0.061
Percentile
93.6%
Buffer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with FLC encoding.
Affected configurations
Node
applequicktimeRange≤7.7
ORapplequicktimeMatch3.0
ORapplequicktimeMatch4.1.2
ORapplequicktimeMatch5.0
ORapplequicktimeMatch5.0.1
ORapplequicktimeMatch5.0.2
ORapplequicktimeMatch6.0
ORapplequicktimeMatch6.0.0
ORapplequicktimeMatch6.0.1
ORapplequicktimeMatch6.0.2
ORapplequicktimeMatch6.1
ORapplequicktimeMatch6.1.0
ORapplequicktimeMatch6.1.1
ORapplequicktimeMatch6.2.0
ORapplequicktimeMatch6.3.0
ORapplequicktimeMatch6.4.0
ORapplequicktimeMatch6.5
ORapplequicktimeMatch6.5.0
ORapplequicktimeMatch6.5.1
ORapplequicktimeMatch6.5.2
ORapplequicktimeMatch7.0
ORapplequicktimeMatch7.0.0
ORapplequicktimeMatch7.0.1
ORapplequicktimeMatch7.0.2
ORapplequicktimeMatch7.0.3
ORapplequicktimeMatch7.0.4
ORapplequicktimeMatch7.1
ORapplequicktimeMatch7.1.0
ORapplequicktimeMatch7.1.1
ORapplequicktimeMatch7.1.2
ORapplequicktimeMatch7.1.3
ORapplequicktimeMatch7.1.4
ORapplequicktimeMatch7.1.5
ORapplequicktimeMatch7.1.6
ORapplequicktimeMatch7.2
ORapplequicktimeMatch7.2.0
ORapplequicktimeMatch7.2.1
ORapplequicktimeMatch7.3
ORapplequicktimeMatch7.3.0
ORapplequicktimeMatch7.3.1
ORapplequicktimeMatch7.3.1.70
ORapplequicktimeMatch7.4
ORapplequicktimeMatch7.4.0
ORapplequicktimeMatch7.4.1
ORapplequicktimeMatch7.4.5
ORapplequicktimeMatch7.5.0
ORapplequicktimeMatch7.5.5
ORapplequicktimeMatch7.6.0
ORapplequicktimeMatch7.6.1
ORapplequicktimeMatch7.6.2
ORapplequicktimeMatch7.6.5
ORapplequicktimeMatch7.6.6
ORapplequicktimeMatch7.6.7
ORapplequicktimeMatch7.6.8
ORapplequicktimeMatch7.6.9
microsoftwindows_7
ORmicrosoftwindows_vista
ORmicrosoftwindows_xpsp2
ORmicrosoftwindows_xpsp3
Related
securityvulns
securityvulns
ZDI-11-315 : Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability
2011-10-31 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-20 00:00:00
APPLE-SA-2011-10-26-1 QuickTime 7.7.1
2011-10-31 00:00:00
zdi
zdi
Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability
2011-10-27 00:00:00
cvelist
cvelist
CVE-2011-3249
2011-10-28 01:00:00
prion
prion
Buffer overflow
2011-10-28 02:49:00
cve
cve
CVE-2011-3249
2011-10-28 02:49:53
nessus
nessus
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
2011-10-28 00:00:00
openvas
openvas
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
2011-11-03 00:00:00
Apple QuickTime Multiple Denial of Service Vulnerabilities - Windows
2011-11-03 00:00:00
Mac OS X Multiple Vulnerabilities (2012-001)
2012-02-06 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.9
Confidence
High
EPSS
0.061
Percentile
93.6%
Related for NVD:CVE-2011-3249