Heap overflow

Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a BkPixPat opcode 0x12 containing crafted values that are used in a calculation for memory...

CVE-2010-0527

Integer overflow in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image...

CVE-2010-0527

Integer overflow in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image...

CVE-2010-0528

Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via crafted color tables in a movie file, related to malformed MediaVideo data, a sample description atom STSD, and a crafted length value...

CVE-2010-0529

Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a PICT image with a BkPixPat opcode 0x12 containing crafted values that are used in a calculation for memory...

CVE-2010-0536

Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted BMP image...

CVE-2010-0536

CVE-2010-0536 affects Apple QuickTime on Windows, where handling of a crafted BMP image can lead to memory corruption, enabling remote code execution or a denial of service (application crash). Affected product/component: Apple QuickTime prior to 7.6.6 on Windows. Root cause: improper BMP handlin...

CVE-2010-0529

Apple QuickTime (Windows) is affected by a heap-based buffer overflow in QuickTime.qts when parsing a PICT image using the BkPixPat opcode (0x12). The flaw exists in Apple QuickTime before version 7.6.6, and can allow remote code execution or a denial of service via crafted images. Exploitation r...

CVE-2010-0528

Apple QuickTime for Windows prior to 7.6.6 is vulnerable to remote code execution via crafted color tables in a movie file, due to a flaw in parsing malformed MediaVideo data from the STSD atom and a crafted length value. The vulnerability can also cause memory corruption and application crashes,...

CVE-2010-0527

CVE-2010-0527 affects Apple QuickTime on Windows prior to 7.6.6. The issue is an integer overflow in QuickTime’s handling of PICT images, which could allow remote code execution or a denial of service (application crash) when a crafted PICT image is processed. Multiple connected sources corrobora...

Apple QuickTime MOV File HREFTrack Cross-Zone Scripting

Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous video formats. QuickTime is capable of processing the Apple QuickTime movie file format, which is a proprietary format created by Appl...

QuickTime < 7.6.6 Multiple Vulnerabilities (Windows)

The version of QuickTime installed on the remote Windows host is older than 7.6.6. Such versions contain several vulnerabilities : - A heap-based buffer overflow in QuickTime's handling of PICT images may lead to an application crash or arbitrary code execution. CVE-2009-2837 - A memory corruptio...

QuickTime < 7.6.6 Multiple Vulnerabilities (Mac OS X)

The version of QuickTime installed on the remote Mac OS X host is older than 7.6.6. Such versions contain several vulnerabilities : - A memory corruption issue in QuickTime's handling of QDM2 encoded audio content may lead to an application crash or arbitrary code execution. CVE-2010-0059 - A...

CVE-2010-0517

Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with M-JPEG encoding, which causes QuickTime to calculate a buffer size using height and width fields,...

CVE-2010-0516

Heap-based buffer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with RLE encoding, which triggers memory corruption when the length of decompressed data exceeds that o...

CVE-2010-0520

Heap-based buffer overflow in QuickTimeAuthoring.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted FLC file, related to crafted DELTAFLI chunks and untrusted length values in a .fli file,...

CVE-2010-0518

QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file with Sorenson encoding...

CVE-2010-0515

QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file with H.264 encoding...

CVE-2010-0519

Integer overflow in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a FlashPix image with a malformed SubImage Header Stream containing a NumberOfTiles field with a large value...

CVE-2010-0526

Heap-based buffer overflow in QuickTimeMPEG.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted genl atom in a QuickTime movie file with MPEG encoding, which is not properly handled during...