5 matches found
ZDI-12-136 : Apple QuickTime Invalid Public Movie Atom Remote Code Execution Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-136 : Apple QuickTime Invalid Public Movie Atom Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-136 August 17, 2012 - -- CVE ID: CVE-2011-3220 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected...
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.7.1 and may be affected by the following vulnerabilities : - A cross-site scripting issue exists in HTML files generated by the 'Save for Web' export feature. CVE-2011-3218 - A buffer overflow error exists in the handli...
QuickTime < 7.7.1 Multiple Vulnerabilities
Binary data 6052.prm...
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
This host is missing an important security update according to Mac OS X 10.6.8 Update/Mac OS X Security Update 2011-006. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2011-3220
CVE-2011-3220 affects Apple QuickTime. The flaw is an uninitialized memory access in how QuickTime handles URL data handlers within movie files, allowing remote attackers to read memory contents via a crafted file. The issue is tied to QuickTime's atom data handling and can lead to memory disclos...