3024 matches found
Apple QuickTime远程缓冲区溢出漏洞
BUGTRAQ ID: 65787 CVECAN ID: CVE-2014-1251 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Windows 7, Vista, XP SP2平台上QuickTime 7.7.5之前版本处理'clef'元素时存在缓冲区溢出问题,恶意制作的视频文件可导致应用意外终止或执行任意代码。 0 Apple Quicktime 7.7.5 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Apple QuickTime远程内存破坏漏洞
BUGTRAQ ID: 65784 CVECAN ID: CVE-2014-1243 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Windows 7, Vista, XP SP2平台上QuickTime 7.7.5之前版本处理跟踪列表时存在未初始化指针问题,恶意制作的视频文件可导致应用意外终止或执行任意代码。 0 Apple Quicktime 7.7.5 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
APPLE-SA-2014-02-25-3 QuickTime 7.7.5
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2014-02-25-3 QuickTime 7.7.5 QuickTime 7.7.5 is now available and addresses the following: QuickTime Available for: Windows 7, Vista, XP SP2 or later Impact: Playing a maliciously crafted movie file may lead to an unexpected application...
Apple QuickTime multiple security vulnerabilities
Buffer overflows, memory corruptions, integer overflows on different media formats parsing...
CVE-2014-1243
Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted track list in a movie file...
CVE-2014-1245
Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted stsz atom in a movie file...
CVE-2014-1246
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted ftab atom in a movie file...
CVE-2014-1247
Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted dref atom in a movie file...
CVE-2014-1249
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PSD image...
CVE-2014-1248
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted ldat atom in a movie file...
CVE-2014-1250
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted ttfo element in a movie file...
CVE-2014-1251
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted clef atom in a movie file...
CVE-2014-1244
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with H.264 encoding...
Buffer overflow
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted clef atom in a movie file...
Buffer overflow
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted ftab atom in a movie file...
Out-of-bounds
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds memory access and application crash via a crafted ttfo element in a movie file...
Design/Logic Flaw
Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted track list in a movie file...
Memory corruption
Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted dref atom in a movie file...
Buffer overflow
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PSD image...
Integer overflow
Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted stsz atom in a movie file...