Apple QuickTime JPEG 2000 COD Length Integer Underflow (CVE-2011-3250)

A remote code execution vulnerability has been reported in Apple QuickTime...

Mac OS X Multiple Vulnerabilities (2012-001)

This host is missing an important security update according to Mac OS X Update/Mac OS X Security Update 2012-001. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Mac OS X Multiple Vulnerabilities (Security Update 2012-001) (BEAST)

The remote host is running a version of Mac OS X 10.6 that does not have Security Update 2012-001 applied. This update contains multiple security-related fixes for the following components : - Apache - ATS - ColorSync - CoreAudio - CoreMedia - CoreText - curl - Data Security - dovecot - filecmds ...

ZDI-12-004 : Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-004 : Apple Quicktime JPEG2000 COD Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-004 January 5, 2012 - -- CVE ID: CVE-2011-3250 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors: Apple - -...

CVE-2011-3250

CVE-2011-3250 describes an integer overflow in Apple QuickTime prior to version 7.7.1 that can be triggered by a crafted JPEG2000-encoded movie file , allowing remote code execution or a denial of service (application crash). The description indicates the vulnerability lies in QuickTime’s handlin...

QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)

The version of QuickTime installed on the remote Windows host is older than 7.7.1 and may be affected by the following vulnerabilities : - A cross-site scripting issue exists in HTML files generated by the 'Save for Web' export feature. CVE-2011-3218 - A buffer overflow error exists in the handli...