3024 matches found
CVE-2010-1508
Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted Track Header aka tkhd atoms...
CVE-2010-3801
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted FlashPix file...
CVE-2010-3802
Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted panorama atom in a QuickTime Virtual Reality QTVR movie file...
CVE-2010-4009
Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file...
CVE-2010-3800
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted PICT file...
CVE-2010-4009
CVE-2010-4009 affects Apple QuickTime prior to 7.6.9. An integer overflow in QuickTime’s handling of movie files can allow a remote attacker to execute arbitrary code or crash the application. Impact is rated high (AV:N/AC:M/Au:N/C:C/I:C/A:C). Remediation: upgrade to QuickTime 7.6.9 or later as r...
CVE-2010-3802
CVE-2010-3802 affects Apple QuickTime prior to 7.6.9. It is a memory-corruption/remote-code-execution risk caused by a signedness error in handling a crafted panorama atom in a QuickTime VR (QTVR) movie. Exploitation could lead to arbitrary code execution or an application crash. Remediation indi...
CVE-2010-3801
CVE-2010-3801 affects Apple QuickTime prior to 7.6.9. A crafted FlashPix file can cause memory corruption leading to remote code execution or a denial of service. The issue is addressed by QuickTime/Apple security updates; Apple cites QuickTime 7.6.9 as the fix for Mac OS X (and related Security ...
CVE-2010-3800
CVE-2010-3800 affects Apple QuickTime prior to 7.6.9, where a memory corruption in handling PICT files can lead to arbitrary code execution or a crash. The issue arises from inadequate validation during PICT processing, enabling remote exploitation. Apple released patches addressing this in Quick...
CVE-2010-1508
CVE-2010-1508 describes a heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows, triggered by parsing Track Header (tkhd) atoms and potentially allowing arbitrary code execution or a crash. OpenVAS notes the issue affects Windows QuickTime and does not affect Mac OS X. Secunia’s a...
CVE-2010-0530
Summary: CVE-2010-0530 affects Apple QuickTime on Windows up to version 7.6.9. A filesystem permissions issue in the user profile’s Apple Computer directory allows a local user to read sensitive files. Affected software (from sources): QuickTime on Windows before 7.6.9. Root cause (as stated): We...
Apple QuickTime for Windows文件系统权限本地信息泄露漏洞
BUGTRAQ ID: 45237 CVE ID: CVE-2010-0530 Apple QuickTime是一款非常流行的多媒体播放器。 Apple QuickTime在实现上存在漏洞,攻击者可利用此漏洞获取敏感信息,访问用户配置文件中"Apple Computer" 目录下的内容。 此漏洞源于文件系统权限问题。 Apple QuickTime Player 5.0.2 - 7.6.8 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.apple.com...
Apple Releases QuickTime 7.6.9
Apple has released QuickTime 7.6.9 to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or obtain sensitive information. US-CERT encourages users and administrators to review Apple article...
Apple QuickTime JPEG2000 heap buffer overflow
Overview Apple QuickTime contains a heap buffer overflow in the processing of JPEG2000 data, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple's QuickTime Player is multimedia software that allows users to view local and remote...
QuickTime < 7.6.9 Multiple Vulnerabilities
Binary data 5725.prm...
QuickTime < 7.6.9 Multiple Vulnerabilities
Binary data 801191.prm...
QuickTime < 7.6.9 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.6.9. Such versions contain several vulnerabilities : - A filesystem permission issue may allow a local user on a Windows system to access the contents of the 'Apple Computer' directory in the user's profile. CVE-2010-05...
Apple QuickTime FPX Subimage Count Out-of-bounds Counter Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required in that a user must be coerced into opening up a malicious document or visiting a malicious website. The specific flaw exists within the way the...
Apple QuickTime Panorama Atom Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that a user must be coerced into visiting a malicious page or opening a malicious file. The specific flaw exists withi...
Apple QuickTime PICT File PackBits Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the application'...