5 matches found
Apple QuickTime Plug-In Security Bypass (CVE-2006-4965; CVE-2007-4673)
Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying still image files as well as numerous audio and video formats. It also provides libraries and plugins for other applications, such as browsers, to read QuickTime media...
FreeBSD Ports: firefox
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Design/Logic Flaw
Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Mozilla Firefox before 2.0.0.7 installed, allows remote attackers to execute arbitrary commands via a QuickTime Media Link QTL file with an embed XML element and a qtnext parameter containing the...
Firefox < 2.0.0.7 Apple QuickTime Plug-In .qtl File qtnext Field Cross-context Scripting
The installed version of Firefox may allow a remote attacker to run script commands subject to the user's privileges via 'qtnext' attributes in QuickTime Media-Link files. Note that this issue can be exploited even if support for JavaScript in the browser has been disabled. C Tenable Network...
QuickTime < 7.1.5 Multiple Vulnerabilities (Windows)
According to its version, the installation of QuickTime on the remote Windows host is affected by multiple buffer overflows. An attacker may be able to leverage these issues to crash the affected application or to execute arbitrary code on the remote host by sending a specially crafted file to a...