Heap overflow

2010-03-3118:30:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.94 High

EPSS

Percentile

99.1%

JSON

Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a BkPixPat opcode (0x12) containing crafted values that are used in a calculation for memory allocation.

CPENameOperatorVersion
quicktimele7.6.0
quicktimeeq7.0.0 windows
quicktimeeq7.0.1 windows
quicktimeeq7.0.2 windows
quicktimeeq7.0.3 windows
quicktimeeq7.0.4 windows
quicktimeeq7.1.0 windows
quicktimeeq7.1.1 windows
quicktimeeq7.1.2 windows
quicktimeeq7.1.3 windows

Name	Operator	Version
quicktime	le	7.6.0
quicktime	eq	7.0.0 windows
quicktime	eq	7.0.1 windows
quicktime	eq	7.0.2 windows
quicktime	eq	7.0.3 windows
quicktime	eq	7.0.4 windows
quicktime	eq	7.1.0 windows
quicktime	eq	7.1.1 windows
quicktime	eq	7.1.2 windows
quicktime	eq	7.1.3 windows