Lucene search

PRIOn knowledge basePRION:CVE-2008-3635

HistorySep 11, 2008 - 1:13 a.m.

Stack overflow

2008-09-1101:13:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.1%

JSON

Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.

CPENameOperatorVersion
quicktimele7.5
quicktimeeq7.0
quicktimeeq7.0.1
quicktimeeq7.0.2
quicktimeeq7.0.3
quicktimeeq7.0.4
quicktimeeq7.1
quicktimeeq7.1.1
quicktimeeq7.1.2
quicktimeeq7.1.3

Name	Operator	Version
quicktime	le	7.5
quicktime	eq	7.0
quicktime	eq	7.0.1
quicktime	eq	7.0.2
quicktime	eq	7.0.3
quicktime	eq	7.0.4
quicktime	eq	7.1
quicktime	eq	7.1.1
quicktime	eq	7.1.2
quicktime	eq	7.1.3

Rows per page:

1-10 of 211

References

lists.apple.com/archives/security-announce//2008/Sep/msg00000.html

secunia.com/advisories/31821

securitytracker.com/id?1020841

support.apple.com/kb/HT3027

www.securityfocus.com/archive/1/496201/100/0/threaded

www.securityfocus.com/bid/31086

www.vupen.com/english/advisories/2008/2527

www.zerodayinitiative.com/advisories/ZDI-08-057/

8.2 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.016 Low

EPSS

Percentile

87.1%

JSON

Related for PRION:CVE-2008-3635