CVE-2012-0659

Integer overflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted MPEG file...

CVE-2012-0660

Buffer underflow in QuickTime in Apple Mac OS X before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted MPEG file...

CVE-2012-0661

CVE-2012-0661 affects Apple QuickTime on Mac OS X. The flaw is a use-after-free in the handling of JPEG2000-encoded movie samples (stsz atom) that allows remote code execution or a crash when processing a crafted file. The specific vulnerability arises when the sample size is too large and memory...

CVE-2012-0660

CVE-2012-0660: Apple QuickTime on Mac OS X pre-10.7.4 is affected by a buffer underflow in MPEG file handling, which can lead to remote arbitrary code execution or a crash. The vulnerability is in QuickTime and is documented with a MEDIUM risk (NVD base score 6.8). The connected documents provide...

CVE-2012-0659

CVE-2012-0659 describes an integer overflow in Apple QuickTime’s MPEG stream padding calculation that can be triggered by a crafted MPEG file to cause a heap buffer overflow and remote code execution. Affected: Apple QuickTime on macOS (OS X), with fixes in updates (e.g., OS X 10.7.4 and related ...

CVE-2012-0658

CVE-2012-0658 is a QuickTime flaw in Mac OS X prior to 10.7.4 where a buffer overflow in QuickTime’s handling of audio sample tables during progressive download could allow remote code execution or cause an application crash. The underlying issue is a buffer overflow in the movie file processing ...

CVE-2012-0661

Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x before 10.7.4 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...

Mac OS X Multiple Vulnerabilities (Security Update 2012-002) (BEAST)

The remote host is running a version of Mac OS X 10.6 that does not have Security Update 2012-002 applied. This update contains multiple security-related fixes for the following components : - curl - Directory Service - ImageIO - libarchive - libsecurity - libxml - Quartz Composer - QuickTime -...

Mac OS X 10.7.x < 10.7.4 Multiple Vulnerabilities (BEAST)

The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.4. The newer version contains numerous security-related fixes for the following components : - Login Window - Bluetooth - curl - HFS - Kernel - libarchive - libsecurity - libxml - LoginUIFramework - PHP - Quartz Compose...

SevenDust/666, AutoStart 9805

1998 The late 1990s saw the advent of more malicious malware for the Mac. Discovered a few days before Halloween 1998, the Sevendust virus would remove all files from the infected hard drive, but leave applications and one file named “666” in the Extensions folder. AutoStart, one of the first Mac...

Apple QuickTime Java Extension不明细节安全漏洞

BUGTRAQ ID: 53003 QuickTime是由苹果电脑所开发的一种多媒体架构，能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式，以及交互式全景影像的数项类型。 Apple QuickTime Java Extension在实现上存在不明细节安全漏洞，影响目前未知。 0 Apple QuickTime Player 7.7.1 厂商补丁： Apple ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://support.apple.com/...

Apple Quicktime PNG Depth Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AppleQuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs when the...

RealNetworks RealPlayer MP4 File Handling Denial of Service Vulnerability - Windows

RealPlayer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2012-1904

mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service memory corruption and application crash via a crafted MP4 file...

Apple Mac OS X (rdrf atoms)远程代码执行漏洞(CVE-2011-3459)

Bugtraq ID: 51811 CVE ID：CVE-2011-3459 Apple Mac OS X是苹果公司发布的操作系统 处理QuickTime电影文件中的rdrf atoms时存在一个单字节缓冲区溢出错误，攻击者可以构建特制电影文件，诱使用户解析，使应用程序崩溃或执行任意代码 0 Apple Mac Os X Server 10.7.2 Apple Mac Os X Server 10.7.1 Apple Mac Os X Server 10.7 Apple Mac Os X Server 10.6.8 Apple Mac OS X 10.6.4 Apple Mac OS X...

CVE-2011-3459

Off-by-one error in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted rdrf atom in a movie file that triggers a buffer overflow...

CVE-2011-3460

Buffer overflow in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PNG file...

Buffer overflow

Off-by-one error in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted rdrf atom in a movie file that triggers a buffer overflow...

Buffer overflow

Buffer overflow in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PNG file...

Memory corruption

QuickTime in Apple Mac OS X before 10.7.3 does not prevent access to uninitialized memory locations, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted MP4 file...