Lucene search
K

13 matches found

OSV
OSV
added 2024/02/12 11:15 p.m.6 views

AZL-42500 CVE-2024-24826 affecting package exiv2 0.28.0-1

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 version v0.28.1. The vulnerable function, QuickTimeVideo::NikonTagsDecoder, was new in v0.28.0, so Exiv2 versions before v0.28 are no...

5CVSS6AI score0.0024EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/01/28 12:0 a.m.6 views

The vulnerability of the Adobe Media Encoder application, related to reading beyond the buffer in memory, allows attackers to escalate their privileges and gain unauthorized access to protected information.

The vulnerability of the Adobe Media Encoder application relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges and gain unauthorized access to protected information through a specially created MOV file...

4.3CVSS6.3AI score0.00312EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/26 12:0 a.m.5 views

The vulnerability of the professional video editing software Adobe Premiere Pro, related to the use of memory after it is released, allows attackers to enhance their privileges and gain unauthorized access to protected information.

The vulnerability of the professional video editing software Adobe Premiere Pro lies in the use of memory after it is released. Exploiting this vulnerability can allow an attacker to enhance their privileges and gain unauthorized access to protected information through a specially created MOV fil...

4.3CVSS5.5AI score0.003EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.4 views

The vulnerability of the Media Foundation component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Media Foundation component in Windows operating systems is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created QuickTime file...

7.3CVSS7.6AI score0.12956EPSS
Exploits0References3
CNVD
CNVD
added 2018/12/10 12:0 a.m.1 views

LibRaw 'parse_qt()' function integer overflow vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. An integer overflow vulnerability exists in the 'parseqt' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.12. A remote attacker can exploit this...

7.1CVSS9.1AI score0.02194EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/06/13 12:0 a.m.20 views

VLC Media Player QuickTime IMA File Denial of Service Vulnerability (Jun 2016) - Windows

VLC media player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS9.2AI score0.24748EPSS
Exploits1References2
Prion
Prion
added 2016/06/08 3:0 p.m.24 views

Buffer overflow

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted QuickTime IMA file...

7.5CVSS8.6AI score0.24748EPSS
Exploits1References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2015/09/08 12:0 a.m.7 views

The vulnerability of the Mac OS X operating system allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the Quartz Composer Framework operating system on Mac OS X arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure using a specially crafted QuickTime file...

6.8CVSS8.1AI score0.02904EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2009/05/29 6:30 p.m.18 views

Design/Logic Flaw

Unspecified vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted QuickTime media file, as...

9.3CVSS7.9AI score0.50926EPSS
Exploits7References13Affected Software1
UbuntuCve
UbuntuCve
added 2009/02/03 11:30 a.m.25 views

CVE-2009-0398

Array index error in the gstqtptrakhandler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins aka gstreamer-plugins 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file...

9.3CVSS5.9AI score0.0319EPSS
Exploits1References1
Cvelist
Cvelist
added 2009/02/03 11:0 a.m.35 views

CVE-2009-0398

Array index error in the gstqtptrakhandler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins aka gstreamer-plugins 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file...

6.2AI score0.0319EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2008/06/17 12:0 a.m.18 views

Apple Quicktime Player < 7.50.51 Multiple Vulnerabilities

Apple Quicktime Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:quicktime";...

9.3CVSS5.1AI score0.12405EPSS
Exploits1References2
Cvelist
Cvelist
added 2007/12/15 1:0 a.m.28 views

CVE-2007-4707

Multiple unspecified vulnerabilities in the Flash media handler in Apple QuickTime before 7.3.1 allow remote attackers to execute arbitrary code or have other unspecified impacts via a crafted QuickTime movie...

7.5AI score0.04036EPSS
Exploits0References7
Rows per page
Query Builder