CVE-2008-5406

Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow."...

Stack overflow

Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow."...

CVE-2008-5406

Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow."...

CVE-2008-5406

Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 are affected by a stack-based buffer overflow in MOV parsing (described as an off-by-one overflow). This vulnerability can cause a denial of service and may allow arbitrary code execution, as noted in the CVE-2008-5406 description. OpenVAS entries ...

Apple iTunes/QuickTime畸形'.mov'文件缓冲区溢出漏洞

BUGTRAQ ID: 32540 CNCAN ID：CNCAN-2008120301 Apple iTunes/QuickTime是苹果公司开发的媒体播放程序。 Apple iTunes/QuickTime处理.mov文件存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 构建恶意的'.mov'文件，诱使用户访问，可导致以应用程序权限执行任意指令。 Apple QuickTime Player 7.5.5 + Apple Mac OS X 10.4.9 + Apple Mac OS X 10.3.9 + Apple Mac OS X 10.5 + Apple Mac O...

itune-overflow.txt

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Quicktime/Itunes Multiple Remote Off By One Overflow Application:...

Itunes 8.0.2.20/Quicktime 7.5.5 (.mov File) Multiple Off By Overflow PoC

No description provided by source. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Quicktime/Itunes Multiple Remo...

Quicktime 7.5.5 (.mov File) / iTunes 8.0.2.20 Multiple Off By Overflow PoC

Exploit for unknown platform in category dos / poc ================================================================================ Apple iTunes 8.0.2.20 / Quicktime 7.5.5 .mov File Multiple Off By Overflow PoC ================================================================================...

Apple iTunes 8.0.2.20QuickTime 7.5.5 - .mov Multiple Off By Overflows (PoC)

Apple iTunes 8.0.2.20QuickTime 7.5.5 - .mov Multiple Off By Overflows PoC...

Apple QuickTime 'STSZ' Atoms内存破坏漏洞

BUGTRAQ ID: 31546 CVE ID：CVE-2008-3626 CNCVE ID：CNCVE-20083626 Apple QuickTime是一款流行的媒体处理程序。 Apple QuickTime处理特殊构建的媒体文件存在问题，远程攻击者可以利用漏洞进行缓冲区溢出，可导致以应用程序权限执行任意指令。 问题存在于CallComponentFunctionWithStorage函数中对STSZ atoms的处理，当samplesizetable中的条目过大时，可触发内存破坏，可能以当前用户上下文执行任意指令。 Apple TV 2.1 Apple TV 2.0 Apple ...

Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities (Windows)

The host is installed with Apple QuickTime which is prone to Multiple Arbitrary Code Execution Vulnerabilities. OpenVAS Vulnerability Test $Id: gbapplequicktimemultvulnwin.nasl 5375 2017-02-20 16:39:23Z cfi $ Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities Windows Authors:...

Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities - Windows

Apple QuickTime is prone to multiple arbitrary code execution vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Apple QuickTime Version Detection for Windows

Detects the installed version of Apple QuickTime. The script logs in via smb, searches for executable of Apple QuickTime Copyright C 2008 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Apple QuickTime Movie/PICT/QTVR Multiple Remote Vulnerabilities

This host has Apple QuickTime installed, which prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodapplequicktimemultvuln900121.nasl 7174 2017-09-18 11:48:08Z asteins $ Description: Apple QuickTime Movie/PICT/QTVR Multiple Remote Vulnerabilities Authors: Sharath S Copyright:...

Apple QuickTime Movie/PICT/QTVR Multiple Remote Vulnerabilities (HT3027)

Apple QuickTime is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:quicktime";...

Gentoo Security Advisory GLSA 200803-08 (win32codecs)

The remote host is missing updates announced in advisory GLSA 200803-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2008-4116

Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long type attribute in a quicktime tag 1 on a web page or embedded in a 2 .mp4 or 3 .mov file, possibly related to the Checkstackcook...

Heap overflow

Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long type attribute in a quicktime tag 1 on a web page or embedded in a 2 .mp4 or 3 .mov file, possibly related to the Checkstackcook...

CVE-2008-4116

Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service browser crash or possibly execute arbitrary code via a long type attribute in a quicktime tag 1 on a web page or embedded in a 2 .mp4 or 3 .mov file, possibly related to the Checkstackcook...

CVE-2008-4116

CVE-2008-4116 concerns Apple QuickTime 7.5.5 and iTunes 8.0. The vulnerability is a heap-based buffer overflow triggered by a long type attribute in a QuickTime tag (on a web page or embedded in .mp4/.mov), related to an off-by-one error and potentially associated with Check_stack_cookie. Consequ...