PRIOn knowledge basePRION:CVE-2009-0188

HistoryJun 02, 2009 - 6:30 p.m.

Memory corruption

2009-06-0218:30:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.024 Low

EPSS

Percentile

89.7%

JSON

Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file.

CPENameOperatorVersion
quicktimeeq7.1.5 windows
quicktimeeq7.3.1
quicktimeeq7.5.5 mac
quicktimeeq7.4.0 windows
quicktimeeq6.5.1
quicktimeeq5.0.2 windows
quicktimeeq6.1.0
quicktimeeq6.1.1 windows
quicktimeeq6.5.2 mac
quicktimeeq6.0.1

Name	Operator	Version
quicktime	eq	7.1.5 windows
quicktime	eq	7.3.1
quicktime	eq	7.5.5 mac
quicktime	eq	7.4.0 windows
quicktime	eq	6.5.1
quicktime	eq	5.0.2 windows
quicktime	eq	6.1.0
quicktime	eq	6.1.1 windows
quicktime	eq	6.5.2 mac
quicktime	eq	6.0.1

Rows per page:

1-10 of 1261

References

lists.apple.com/archives/security-announce/2009/Jun/msg00000.html

secunia.com/advisories/35091

secunia.com/secunia_research/2009-10/

support.apple.com/kb/HT3591

www.securityfocus.com/archive/1/504007/100/0/threaded

www.securityfocus.com/bid/35159

www.securitytracker.com/id?1022314

www.vupen.com/english/advisories/2009/1469

exchange.xforce.ibmcloud.com/vulnerabilities/50886

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16085

8.1 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.024 Low

EPSS

Percentile

89.7%

JSON

Related for PRION:CVE-2009-0188