3024 matches found
CVE-2011-3250
Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...
CVE-2011-3251
Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via crafted TKHD atoms in a QuickTime movie file...
CVE-2011-3249
CVE-2011-3249 involves a buffer overflow in Apple QuickTime prior to version 7.7.1 . A crafted movie file using the FLC encoding can be used by a remote attacker to trigger arbitrary code execution or cause a denial of service (application crash). The vulnerability is reported as highly impactful...
CVE-2011-3247
Apple QuickTime for Windows with versions before 7.7.1 is affected by an integer overflow in PICT file handling that can cause a heap buffer overflow, enabling remote code execution or a denial of service when processing crafted files. The vulnerability specifically involves PnPixPat PatType 3 pa...
CVE-2011-3251
Apple QuickTime for Windows (pre-7.7.1) is affected by a vulnerability in processing the TKHD atom of QuickTime movie files, which can lead to memory corruption and arbitrary code execution or a denial of service. The issue stems from how matrix structures in the mp4/tkhd handling are parsed, all...
CVE-2011-3250
CVE-2011-3250 describes an integer overflow in Apple QuickTime prior to version 7.7.1 that can be triggered by a crafted JPEG2000-encoded movie file , allowing remote code execution or a denial of service (application crash). The description indicates the vulnerability lies in QuickTime’s handlin...
CVE-2011-3248
CVE-2011-3248 affects Apple QuickTime (pre-7.7.1). A signedness error in the handling of font tables embedded in QuickTime movie files can be exploited by a crafted file to cause a remote code execution or application crash. The vulnerability is documented in ZDI-12-005 and tracked publicly with ...
Apple QuickTime 7.7.1之前版本视频文件处理远程代码执行漏洞
BUGTRAQ ID: 50400 CVE ID: CVE-2011-3248 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Apple QuickTime 7.7.1之前版本在处理特制视频文件时存在签名问题导致的远程代码执行漏洞,攻击者可利用此漏洞以当前用户权限执行任意代码。 Apple QuickTime Player 7.x 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.apple.com/...
Apple QuickTime信息泄露漏洞
BUGTRAQ ID: 50130 CVE ID: CVE-2011-3220 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Apple QuickTime在处理视频文件中的URL数据处理程序时存在未初始化内存访问问题,攻击者可利用此漏洞读取内存内容。 Apple QuickTime Player 7.x 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.apple.com/...
Apple Mac OS X FlashPix文件缓冲区溢出漏洞
BUGTRAQ ID: 50100 CVE ID: CVE-2011-3222 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Apple QuickTime在处理特制FlashPix文件时存在缓冲区溢出漏洞,攻击者可利用此漏洞以当前用户权限执行任意代码,应用程序意外终止。 Apple QuickTime Player 7.x 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://support.apple.com/...
Apple QuickTime 7.7.1之前版本TKHD 元素处理远程代码执行漏洞
BUGTRAQ ID: 50403 CVE ID: CVE-2011-3251 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Apple QuickTime 7.7.1之前版本在处理特制视频文件时存在远程代码执行漏洞,攻击者可利用此漏洞以当前用户权限执行任意代码,导致应用意外终止。此漏洞不影响Mac OS X系统。 Apple QuickTime Player 7.x 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.7.1 and may be affected by the following vulnerabilities : - A cross-site scripting issue exists in HTML files generated by the 'Save for Web' export feature. CVE-2011-3218 - A buffer overflow error exists in the handli...
QuickTime < 7.7.1 Multiple Vulnerabilities
Binary data 801196.prm...
QuickTime < 7.7.1 Multiple Vulnerabilities
Binary data 6052.prm...
Apple Quicktime PnPixPat PatType 3 Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...
Apple QuickTime FLC RLE Packet Count Decompression Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...
Apple QuickTime FLC Delta Decompression Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...
Apple QuickTime Atom Hierarachy Argument Size Mismatch Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...
Apple Quicktime Empty URL Data Handler Remote Code Execution Vulnerability
This vulnerability allows remote attackers to potentially disclose memory addresses on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
Apple QuickTime H264 Matrix Conversion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...