CVE-2009-0952

Buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted compressed PSD image...

CVE-2009-0953

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image...

CVE-2009-0955

Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted image description atoms in an Apple video file, related to a "sign extension issue."...

CVE-2009-0957

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JP2 image...

CVE-2009-0188

CVE-2009-0188 concerns Apple QuickTime before 7.6.2, where a crafted Sorenson 3 video file can cause memory corruption, leading to arbitrary code execution or an application crash. The vulnerability is part of a set of QuickTime parsing flaws (including how it handles Sorenson Video 3 content and...

CVE-2009-0951

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted FLC compression file...

CVE-2009-0956

Apple QuickTime before 7.6.2 does not properly initialize memory before use in handling movie files, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a movie containing a user data atom of size zero...

CVE-2009-0185

Apple QuickTime before 7.6.2 is affected by a heap-based buffer overflow in processing MS ADPCM encoded audio data within AVI files, enabling potential remote code execution or crash (DoS). Public docs list CVE-2009-0185 among a set of related QuickTime vulnerabilities; remediation is to update t...

CVE-2009-0955

CVE-2009-0955 affects Apple QuickTime prior to 7.6.2 due to a sign-extension vulnerability in the Image Description Atom handling for Apple Video files. A remote attacker could entice a user to open a crafted QuickTime movie, triggering a memory corruption flaw that may lead to arbitrary code exe...

CVE-2009-0954

Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a movie file containing crafted Clipping Region CRGN atom types...

CVE-2009-0954

Apple QuickTime for Windows is affected by CVE-2009-0954 due to a heap-based buffer overflow when parsing Clipping Region (CRGN) atoms in QuickTime movie files. The issue allows remote code execution or denial of service via a crafted movie file, with the root cause being improper bounds checks d...

CVE-2009-0951

CVE-2009-0951 is a heap-based overflow in Apple QuickTime

CVE-2009-0957

CVE-2009-0957 describes a heap-based buffer overflow in Apple QuickTime prior to 7.6.2, triggered during parsing of JP2 images. The flaw can allow remote attackers to execute arbitrary code or cause an application crash, potentially leading to denial of service. Affected product: Apple QuickTime

CVE-2009-0956

Apple QuickTime before 7.6.2 contains an uninitialized memory access in handling movie files, allowing remote code execution or a crash via a movie containing a user data atom of size zero. The CVE-2009-0956 entry is part of a set of related QuickTime vulnerabilities; remediation is to apply the ...

CVE-2009-0953

CVE-2009-0953 affects Apple QuickTime prior to 7.6.2, where handling of PICT images can cause a heap-based buffer overflow, enabling remote code execution or a denial of service. Affected products are QuickTime on Windows and Mac OS X as part of the QuickTime suite. The vulnerability stems from p...

CVE-2009-0952

CVE-2009-0952 refers to a buffer overflow in Apple QuickTime before 7.6.2 triggered by parsing a crafted PSD image, allowing remote code execution or a denial of service. Affected product: Apple QuickTime (Windows and Mac). Root cause: overflow in PSD image handling during header copy/size valida...

Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of QuickTime Player. User interaction is required to exploit this vulnerability in that the target must either open a malicious file, or visit a malicious web page. The specific flaw exists during...

ZDI-09-030: Apple Quicktime PICT Opcode 0x71 Heap Overflow Vulnerability

ZDI-09-030: Apple Quicktime PICT Opcode 0x71 Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-030 June 2, 2009 -- CVE ID: CVE-2009-0010 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection: TippingPoint IPS...

Apple QuickTime CRGN Atom Parsing Heap Buffer Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of QuickTime Player. User interaction is required to exploit this vulnerability in that the target must either open a malicious file, or visit a malicious web page. The specific flaw exists during parsing of...

Apple Quicktime PICT Opcode 0x8201 Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of PICT...