PRIOn knowledge basePRION:CVE-2011-3219

HistoryOct 12, 2011 - 6:55 p.m.

Buffer overflow

2011-10-1218:55:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.053 Low

EPSS

Percentile

92.8%

JSON

Buffer overflow in CoreMedia, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.

CPENameOperatorVersion
itunesle10.4.1
ituneseq4.0.0
ituneseq4.0.1
ituneseq4.1.0
ituneseq4.2.0
ituneseq4.5
ituneseq4.5.0
ituneseq4.6
ituneseq4.6.0
ituneseq4.7

Name	Operator	Version
itunes	le	10.4.1
itunes	eq	4.0.0
itunes	eq	4.0.1
itunes	eq	4.1.0
itunes	eq	4.2.0
itunes	eq	4.5
itunes	eq	4.5.0
itunes	eq	4.6
itunes	eq	4.6.0
itunes	eq	4.7

Rows per page:

1-10 of 701

References

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

osvdb.org/76374

support.apple.com/kb/HT4981

support.apple.com/kb/HT5002

support.apple.com/kb/HT5016

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17228

8.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.053 Low

EPSS

Percentile

92.8%

JSON

Related for PRION:CVE-2011-3219