CVE-2016-5108

CVE-2016-5108 affects VideoLAN VLC media player prior to 2.2.4. A buffer overflow in DecodeAdpcmImaQT (modules/codec/adpcm.c) can be triggered by a crafted QuickTime IMA file, leading to denial of service (crash) and, potentially, arbitrary code execution. Exploitation is possible remotely and do...

CVE-2016-5108

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted QuickTime IMA file...

KLA10824 Denial of service and arbitrary code execution vulnerabilities in VideoLAN VLC media player

An unknown vulnerability was found in VLC media player. By exploiting this vulnerability malicious users can cause a denial of service or execute arbitrary code. This vulnerability can be exploited remotely via specially crafted QuickTime IMA file. Technical details This vulnerability related to...

Mac OS X 10.11.x < 10.11.4 Multiple Vulnerabilities

Binary data 9327.prm...

Apple OS X El Capitan QuickTime Denial of Service Vulnerability

Apple OS X El Capitan is an operating system on Apple devices. An unspecified security vulnerability exists in Apple OS X El Capitan QuickTime, which allows attackers to exploit the vulnerability to crash applications or execute arbitrary code...

CVE-2016-1848

QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

CVE-2016-1848

QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

Memory corruption

QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

CVE-2016-1848

QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

CVE-2016-1848

CVE-2016-1848 affects QuickTime on OS X El Capitan/older OS X versions, with memory corruption via a crafted file that may allow remote code execution or crash. Connected sources corroborate that QuickTime parsing of certain files (e.g., .mov) can trigger memory corruption leading to arbitrary co...

Apple QuickTime - &#039;.mov&#039; Parsing Memory Corruption

Application: Apple Quicktime Platforms: OSX Author: Francis Provencher of COSIG Website: http://www.protekresearchlab.com/ Twitter: @COSIG @protekresearch CVE-2016-1848 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1 Introduction =============== QuickTime is an...

Apple QuickTime - .mov Parsing Memory Corruption

Apple QuickTime - .mov Parsing Memory Corruption Application: Apple Quicktime Platforms: OSX Author: Francis Provencher of COSIG Website: http://www.protekresearchlab.com/ Twitter: @COSIG @protekresearch CVE-2016-1848 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1...

Apple QuickTime - MOV File Parsing Memory Corruption

Exploit for macOS platform in category dos / poc Application: Apple Quicktime Platforms: OSX Author: Francis Provencher of COSIG Website: http://www.protekresearchlab.com/ Twitter: @COSIG @protekresearch CVE-2016-1848 1 Introduction 2 Report Timeline 3 Technical details 4 POC =============== 1...

Mac OS X 10.11.x < 10.11.5 Multiple Vulnerabilities

The remote host is running a version of Mac OS X that is 10.11.x prior to 10.11.5. It is, therefore, affected by multiple vulnerabilities in the following components : - AMD - apachemodphp - AppleGraphicsControl - AppleGraphicsPowerManagement - Assistant - ATS - Audio - Captive - CFNetwork -...

Apple QuickTime moov atom arbitrary code execution vulnerability

Apple QuickTime is a multimedia playback software. A buffer overflow vulnerability in Apple QuickTime's handling of media files containing a special moov atom allows remote attackers to construct malicious media files that can be tricked into being parsed by an application, which can crash the...

Apple QuickTime Arbitrary Code Execution Vulnerability

Apple QuickTime is a multimedia playback software. A buffer overflow vulnerability in Apple QuickTime's handling of media files allows remote attackers to construct malicious media files that can be tricked into being parsed by an application, which can crash the application or execute arbitrary...

Drop support Windows Quicktime plugin from Confluence multimedia plugin

The US Govt is recommending users should uninstall Quicktime for Windows http://krebsonsecurity.com/2016/04/us-cert-to-windows-users-dump-apple-quicktime/ In order to assist users transition we need to drop support for Quicktime plugin from Multimedia plugins and use the "video" tag instead...

Drop support Windows Quicktime plugin from Confluence multimedia plugin

The US Govt is recommending users should uninstall Quicktime for Windows http://krebsonsecurity.com/2016/04/us-cert-to-windows-users-dump-apple-quicktime/ In order to assist users transition we need to drop support for Quicktime plugin from Multimedia plugins and use the "video" tag instead...

Apple QuickTime < 7.7.9 Multiple Vulnerabilities

Binary data 9306.prm...

Apple QuickTime < 7.7.7 Multiple Vulnerabilities

Binary data 9304.prm...