123 matches found
CVE-2025-60485
GPAC MP4Box contains a segmentation fault in the gf_isom_apple_set_tag_ex function (/isomedia/isom_write.c) that can crash the process when parsing a crafted MP4 file, affecting versions before 26.02.0. The issue is a DoS vulnerability caused by a fault in tag handling. The available references c...
EUVD-2015-7019
Malware in sbrugna...
EUVD-2015-7018
Malware in sbrugna...
EUVD-2008-1026
Malware in sbrugna...
CVE-2009-0894
Heap-based buffer overflow in the decodercreate function in the initialization functionality in xvidcore/src/decoder.c in Xvid before 1.2.2, as used by Windows Media Player and other applications, allows remote attackers to execute arbitrary code via vectors involving the DirectShow aka DShow...
SUSE CVE-2017-9125
The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mp4 file...
CVE-2019-8705
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15, tvOS 13. Processing a maliciously crafted movie may result in the disclosure of process memory...
CVE-2019-8585
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. Processing a maliciously crafted movie file may lead to arbitrary code execution...
Input validation
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. Processing a maliciously crafted movie file may lead to arbitrary code execution...
Memory corruption
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "CoreAudio" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...
CVE-2017-7008
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "CoreAudio" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the CoreMedia component in the Mac OS X operating system arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, or cause a service failure memory corruption, application...
CVE-2017-2431
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "CoreMedia" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted .mov file...
CVE-2015-7117
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090,...
CVE-2015-7085
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090, CVE-2015-7091,...
Memory corruption
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090,...
Memory corruption
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090, CVE-2015-7091,...
Memory corruption
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090, CVE-2015-7091,...
Memory corruption
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7091,...
Memory corruption
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089, CVE-2015-7090,...