CVE-2009-0001

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a crafted RTSP URL...

CVE-2009-0002

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a QTVR movie file with crafted THKD atoms...

CVE-2009-0004

Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a crafted MP3 audio file...

CVE-2009-0007

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms...

CVE-2009-0006

Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow...

CVE-2009-0005

Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and possibly execute arbitrary code via a crafted H.263 encoded movie file that triggers memory corruption...

CVE-2009-0003

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service application termination and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the WAVEFORMATEX structure...

CVE-2009-0003

Apple QuickTime prior to 7.6 contains a heap-based buffer overflow in processing AVI headers, specifically when the nBlockAlign value in the _WAVEFORMATEX structure is malformed. Consequences cited include possible DoS (application termination) and arbitrary code execution. CVE-2009-0003 is corro...

CVE-2009-0002

CVE-2009-0002 is a heap-based buffer overflow in Apple QuickTime prior to 7.6 triggered by processing THKD atoms in QTVR movie files. Remote attackers could cause a denial of service and, in some cases, arbitrary code execution. Affected: QuickTime on Mac OS X and Windows (versions older than 7.6...

CVE-2009-0001

Apple QuickTime before 7.6 is vulnerable to a heap-based buffer overflow triggered by processing crafted RTSP URLs, potentially allowing remote code execution or application termination. Remediation: update to Apple QuickTime 7.6 or newer (per cited advisories).

CVE-2009-0007

Summary (CVE-2009-0007) : Apple QuickTime contains a heap-based buffer/memory corruption in the handling of JPEG atoms embedded in STSD atoms within QuickTime movie files. The flaw occurs due to lack of boundary checks when processing these JPEG atoms, allowing a remote attacker to cause a crash ...

CVE-2009-0006

Apple QuickTime before 7.6 is affected by CVE-2009-0006, a Cinepak MDAT heap overflow due to a signedness error . This allows remote code execution or a denial of service when parsing Cinepak-encoded movie files with a crafted MDAT atom. Exploitation details across sources indicate the issue can ...

CVE-2009-0005

CVE-2009-0005 concerns Apple QuickTime before 7.6. The vulnerability is described as memory corruption triggered by a crafted H.263-encoded movie file, allowing remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code. Several OpenVAS/Nessus entr...

CVE-2009-0004

Apple QuickTime prior to 7.6 is affected by multiple CVEs including CVE-2009-0004, where a buffer overflow in QuickTime’s handling of MPEG-2/MP3 content can cause application termination or arbitrary code execution. The OpenVAS/Nessus entries reference Windows and Mac OS X variants of QuickTime

Apple QuickTime STSD JPEG Atom Heap Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the handling of JPEG atoms embedded in STSD...

Apple QuickTime VR Track Header Atom Heap Corruption Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple Quicktime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

Apple QuickTime Cinepak Codec MDAT Heap Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the handling of movie data encoded using the...

Apple QuickTime AVI Header nBlockAlign Heap Corruption Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of AVI file...

Apple QuickTime Malformed .mov File Buffer Overflow Vulnerability

This host has QuickTime installed, which is prone to Buffer Overflow Vulnerability. OpenVAS Vulnerability Test $Id: gbapplequicktimebofvuln.nasl 4456 2016-11-09 12:40:37Z cfi $ Apple QuickTime Malformed .mov File Buffer Overflow Vulnerability Authors: Sharath S Copyright: Copyright c 2008 Greenbo...

Apple QuickTime Malformed .mov File Buffer Overflow Vulnerability

QuickTime is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:quicktime";...