APPLE-SA-2014-10-22-1 QuickTime 7.7.6

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-10-22-1 QuickTime 7.7.6 QuickTime 7.7.6 is now available and addresses the following: QuickTime Available for: Windows 7, Vista, XP SP2 or later Impact: Playing a maliciously crafted movie file may lead to an unexpected application...

QuickTime < 7.7.6 Multiple Vulnerabilities (Windows)

The version of Apple QuickTime installed on the remote Windows host is prior to 7.7.6. It is, therefore, affected by the following vulnerabilities : - A memory corruption flaw exists when handling specially crafted RLE encoded videos due to user-supplied input not being properly sanitized...

Apple Releases Security Updates for QuickTime

Apple has released QuickTime 7.7.6 for Windows 7, Vista, XP SP2 or later to address multiple vulnerabilities, some of which may allow remote attackers to execute arbitrary code or cause a denial of service. Users and administrators are encouraged to review Apple Support Article HT6493 and apply a...

Mac OS X < 10.10 Multiple Vulnerabilities (APPLE-SA-2014-10-16-1 OS X Yosemite v10.10)

Binary data 8555.prm...

CVE-2014-4351

Buffer overflow in QuickTime in Apple OS X before 10.10 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted audio samples in an m4a file...

Buffer overflow

Buffer overflow in QuickTime in Apple OS X before 10.10 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted audio samples in an m4a file...

CVE-2014-4351

CVE-2014-4351 : Apple QuickTime on macOS X before 10.10 is affected by a buffer overflow in handling of audio samples in M4A files, allowing remote code execution or a denial of service. Affected component: QuickTime (OS X). Root cause: memory corruption when parsing M4A audio samples. Impact: ar...

CVE-2014-4351

Buffer overflow in QuickTime in Apple OS X before 10.10 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted audio samples in an m4a file...

Mac OS X < 10.10 Multiple Vulnerabilities (POODLE) (Shellshock)

The remote host is running a version of Mac OS X is prior to version 10.10. This update contains several security-related fixes for the following components : - 802.1X - AFP File Server - apache - App Sandbox - Bash - Bluetooth - Certificate Trust Policy - CFPreferences - CoreStorage - CUPS - Doc...

Apple QuickTime PICT PnSize 缓冲区溢出漏洞

No description provided by source...

Apple QuickTime TeXML Style Element Stack 缓冲区溢出漏洞

No description provided by source...

Apple Quicktime 7 Invalid Atom Length 缓冲区溢出漏洞

No description provided by source...

Apple QuickTime MIDI Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

Apple QuickTime mdat Atom Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of R...

CVE-2014-4979

Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a malformed version number and flags in an mvhd atom...

Memory corruption

Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a malformed version number and flags in an mvhd atom...

CVE-2014-4979

Apple QuickTime for Windows is affected by CVE-2014-4979 due to memory corruption in the mvhd atom when handling malformed version numbers and flags, potentially enabling arbitrary code execution or a crash. The issue is addressed in QuickTime 7.7.6, per the Apple security content; updating to th...

CVE-2014-4979

Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a malformed version number and flags in an mvhd atom...

KLA10442 DoS vulnerability in QuickTime

An unknown vulnerability have been found in Apple QuickTime. Vulnerability can be exploited remotely via specially designed mvhd atom. Original advisories Apple bulletin Related products Apple-QuickTime CVE list CVE-2014-4979 critical Solution Update to latest version Quicktime download Impacts D...

(0Day) Apple QuickTime 'mvhd' Atom Heap Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the 'mvhd' atom...