Apple QuickTime FlashPix File Buffer Overflow (CVE-2009-2798)

Apple's QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous audio/video formats. One of the image file formats supported by QuickTime is the FlashPix image format. A heap buffer overflow...

Apple QuickTime Movie File Clipping Region Handling Heap Buffer Overflow (CVE-2009-0954)

Apple's QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files as well as numerous audio/video formats. A QuickTime movie file consists of Metadata and Atoms. The Metadata stores the description of the media content...

Multiple Media Players ((iTunes QuickTime) - HTTP DataHandler Overflow

Multiple Media Players iTunes QuickTime - HTTP DataHandler Overflow ScaryMovie Exploit Study By: DrIDE October, 2009 There is a widespread failure in the way that .MOV files are handled by the Quicktime Library. I have attempted to compound my findings on this issue. Nearly every .MOV enabled...

Multiple Media Player HTTP DataHandler Overflow (iTunes, Quicktime, etc)

Exploit for unknown platform in category dos / poc ======================================================================== Multiple Media Player HTTP DataHandler Overflow iTunes, Quicktime, etc ======================================================================== ScaryMovie Exploit Study By:...

Multiple Media Players ((iTunes / QuickTime) - HTTP DataHandler Overflow

ScaryMovie Exploit Study By: DrIDE October, 2009 There is a widespread failure in the way that .MOV files are handled by the Quicktime Library. I have attempted to compound my findings on this issue. Nearly every .MOV enabled application that I tested fell victim to this exploit. This is a local...

Apple QuickTime VR Track Header Atom Heap Corruption (CVE-2009-0002)

QuickTime is a media player application developed by Apple. It is capable of playing back numerous multimedia file formats from local file system or remote servers. There exists a heap buffer memory corruption vulnerability in Apple QuickTime. The vulnerability is due to a logic error while...

Apple QuickTime 7.2 / 7.3 RTSP Buffer Overflow

Exploit Title: Apple QuickTime 7.2/7.3 RTSP BOF Perl Date: 2009-01-06 Author: Jacky Software Link: downoad link if available Version: 7.2/7.3 Tested on: Windows XP SP3 CVE : if exists Code : Apple QuickTime 7.2/7.3 RTSP BOF Perl Edition Discovered by Krystian Kloskowski h07 Written and coded by...

Apple QuickTime 7.27.3 - RTSP Buffer Overflow (Perl)

Apple QuickTime 7.27.3 - RTSP Buffer Overflow Perl Exploit Title: Apple QuickTime 7.2/7.3 RTSP BOF Perl Date: 2009-01-06 Author: Jacky Software Link: downoad link if available Version: 7.2/7.3 Tested on: Windows XP SP3 CVE : if exists Code : Apple QuickTime 7.2/7.3 RTSP BOF Perl Edition Discovere...

Apple QuickTime 7.2/7.3 RTSP BOF (Perl)

Exploit for unknown platform in category remote exploits ======================================= Apple QuickTime 7.2/7.3 RTSP BOF Perl ======================================= Exploit Title: Apple QuickTime 7.2/7.3 RTSP BOF Perl Date: 2009-01-06 Author: Jacky Software Link: downoad link if availab...

QuickTime Streaming Server parse_xml.cgi Remote Execution

$Id: qtssparsexmlexec.rb 7776 2009-12-09 15:13:35Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

Apple QuickTime

Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a crafted MP3 audio file. Heap-based buffer overflow in?Apple QuickTime before 7.6 allows remote attackers to cause a denial of servic...

Apple QuickTime SMIL File Handling Integer Overflow (CVE-2007-2394)

QuickTime is a media player application developed by Apple. It is capable of playing back numerous multimedia file formats from local file system or network servers. One of the media formats supported by Apple QuickTime is SMIL. An integer overflow vulnerability exists in Apple QuickTime. The...

Apple QuickTime FPX File Handling Integer Overflow (CVE-2006-1249)

Apple QuickTime is a popular multi-media playback and light editing application. The QuickTime suite includes the QuickTime Player, which is capable of displaying movies, images and audio, as well as the PictureViewer, which is a light-weight application capable of displaying still images only. T...

Mandriva Security Advisory MDVSA-2009:319 (xine-lib)

The remote host is missing an update to xine-lib announced via advisory MDVSA-2009:319. OpenVAS Vulnerability Test $Id: mdksa2009319.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:319 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...

QuickTime Streaming Server parse_xml.cgi Remote Execution

The QuickTime Streaming Server contains a CGI script that is vulnerable to metacharacter injection, allow arbitrary commands to be executed as root. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModu...

Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:319)

Vulnerabilities have been discovered and corrected in xine-lib : Failure on Ogg files manipulation can lead remote attackers to cause a denial of service by using crafted files CVE-2008-3231. Failure on manipulation of either MNG or Real or MOD files can lead remote attackers to cause a denial of...

Apple QuickTime 7.3 RTSP Response Header Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ class Metasploit3 'Apple QuickTime 7.3 RTSP Respon...

Apple QuickTime 7.1.3 RTSP URI Buffer Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3...

Apple QuickTime and iTunes Movie File Heap Memory Corruption (CVE-2005-4092)

Apple QuickTime is a multimedia player that supports a wide range of media formats. The QuickTime product is also installed as a component with the Apple iTunes product. The software supports parsing and displaying picture files as well as numerous video formats. QuickTime is capable of processin...

Mandriva Security Advisory MDVSA-2009:299 (xine-lib)

The remote host is missing an update to xine-lib announced via advisory MDVSA-2009:299. OpenVAS Vulnerability Test $Id: mdksa2009299.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:299 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...