3024 matches found
CVE-2015-7117
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090,...
CVE-2015-7092
Apple QuickTime before 7.7.9 is vulnerable to remote code execution or denial of service via a crafted TXXX frame in an MP3 ID3 tag inside a movie file, caused by a heap-based buffer overflow in ID3/TXXX processing. No exploitation details or patches are provided in the documents. References: ZDI...
CVE-2015-7087
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090, CVE-2015-7091,...
CVE-2015-7089
Technical details are not provided in the connected documents. No public specifics about affected product, root cause, impact, or fixes are included. Monitor for updates.
CVE-2015-7086
Technical details for CVE-2015-7086 are not publicly provided in the connected documents. The initial description mentions QuickTime before 7.7.9 vulnerable to remote code execution via crafted movie files. No additional vendor/version specifics are available here; monitor for updates.
CVE-2015-7090
CVE-2015-7090 affects Apple QuickTime prior to 7.7.9. The vulnerability allows remote attackers to trigger memory corruption via a crafted movie file, potentially leading to arbitrary code execution or a denial of service (application crash). This is a separate issue from related CVEs (CVE-2015-7...
CVE-2015-7088
CVE-2015-7088 concerns Apple QuickTime before 7.7.9, where a crafted movie file can cause remote code execution or memory corruption leading to a denial of service. The description notes this is a separate vulnerability from CVE-2015-7085/7086/7087/7089/7090/7091/7092/7117. Exploitation details o...
Apple Quicktime dref Atom Null Data Reference Entry Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0023 Apple Quicktime dref Atom Null Data Reference Entry Denial of Service Vulnerability January 8, 2016 CVE Number CVE-2015-7090 Description There is a denial of service vulnerability in Apple Quicktime. An attacker who can control the size and type of a dat...
Apple QuickTime ID3 Tag Heap Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of I...
Apple Quicktime mdat Corruption Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0020 Apple Quicktime mdat Corruption Denial of Service Vulnerability January 8, 2016 CVE Number CVE-2015-7088 Description There is a denial of service vulnerability in Apple Quicktime. An attacker who can control the content of the mdat section of a .mov file...
Apple Quicktime Invalid samr Atom Size Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0019 Apple Quicktime Invalid samr Atom Size Denial of Service Vulnerability January 8, 2016 CVE Number CVE-2015-7087 Description There is a denial of service vulnerability in Apple Quicktime. An attacker who can control the size of a samr atom in a .mov file...
Apple Releases Security Update for QuickTime
Apple has released a security update to address multiple vulnerabilities in QuickTime for Windows 7 and Windows Vista. Exploitation of one of these vulnerabilities may allow an attacker to take control of an affected system. Users and administrators are encouraged to review the Apple security...
Apple Quicktime Invalid alis Atom Size Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0022 Apple Quicktime Invalid alis Atom Size Denial of Service Vulnerability January 8, 2016 CVE Number CVE-2015-7117 Description There is a denial of service vulnerability in Apple Quicktime. An attacker who can control the size of an alis atom in a .mov file...
Apple Quicktime mdat Corruption Denial of Service Vulnerability
Talos Vulnerability Report TALOS-2016-0021 Apple Quicktime mdat Corruption Denial of Service Vulnerability January 8, 2016 CVE Number CVE-2015-7089 Description There is a denial of service vulnerability in Apple Quicktime. An attacker who can control the content of the mdat section of a .mov file...
About the security content of QuickTime 7.7.9 - Apple Support
For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are available. To learn more about Apple Product Security, see the Apple Product Security website. For information about...
KLA10731 Multiple vulnerabilities in Apple QuickTime
An unspecified vulnerabilities were found in Apple QuickTime. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed movie file. Original advisories Apple advisory Related...
About the security content of QuickTime 7.7.9
About the security content of QuickTime 7.7.9 This document describes the security content of QuickTime 7.7.9. For the protection of our customers, Apple does not disclose, discuss, or confirm security issues until a full investigation has occurred and any necessary patches or releases are...
CVE-2007-5045
Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Mozilla Firefox before 2.0.0.7 installed, allows remote attackers to execute arbitrary commands via a QuickTime Media Link QTL file with an embed XML element and a qtnext parameter containing the...
Mac OS X < 10.10.5 Multiple Vulnerabilities
Binary data 8981.prm...
Mac OS X < 10.10.4 Multiple Vulnerabilities
Binary data 8801.prm...