Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2020/09/26 12:0 a.m.37 views

Ubuntu 16.04 LTS : libquicktime vulnerabilities (USN-4545-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4545-1 advisory. It was discovered that libquicktime incorrectly handled certain malformed MP4 files. If a user were tricked into opening a specially crafted MP4 file, a...

7.1CVSS6.1AI score0.06487EPSS
Exploits3References8
Ubuntu
Ubuntu
added 2020/09/25 8:2 p.m.52 views

USN-4545-1: libquicktime vulnerabilities

It was discovered that libquicktime incorrectly handled certain malformed MP4 files. If a user were tricked into opening a specially crafted MP4 file, a remote attacker could use this issue to cause a denial of service resource exhaustion. CVE-2017-9122 It was discovered that libquicktime...

7.1CVSS6.2AI score0.06487EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2017/07/31 12:0 a.m.38 views

Debian DLA-1042-1 : libquicktime security update

CVE-2017-9122 The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file. CVE-2017-9123 The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers t...

7.1CVSS6.3AI score0.06487EPSS
Exploits3References9
Debian
Debian
added 2017/07/28 8:14 p.m.22 views

[SECURITY] [DLA 1042-1] libquicktime security update

Package : libquicktime Version : 2:1.2.4-3+deb7u2 CVE ID : CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 Debian Bug : 864664 CVE-2017-9122 The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial o...

7.1CVSS7AI score0.06487EPSS
Exploits3
Mageia
Mageia
added 2017/07/25 10:7 p.m.34 views

Updated libquicktime packages fix security vulnerabilities

A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed CVE-2017-9122. An invalid memory read in lqtframeduration via a crafted mp4 file was fixed CVE-2017-9123. A NULL pointer dereference in quicktimematch32 via a crafted mp4 file was fixed CVE-2017-9124. A DoS in...

7.1CVSS4.3AI score0.06487EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/07/07 12:0 a.m.36 views

openSUSE Security Update : libquicktime (openSUSE-2017-785)

This update for libquicktime fixes the following issues : - CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed. boo1044077 - CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. boo1044009 - CVE-2017-9124: A NULL...

7.1CVSS6.2AI score0.06487EPSS
Exploits3References14
Tenable Nessus
Tenable Nessus
added 2017/07/05 12:0 a.m.31 views

SUSE SLED12 / SLES12 Security Update : libquicktime (SUSE-SU-2017:1769-1)

This update for libquicktime fixes the following issues : - CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed. bsc1044077 - CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. bsc1044009 - CVE-2017-9124: A NULL...

7.1CVSS6.2AI score0.06487EPSS
Exploits3References22
UbuntuCve
UbuntuCve
added 2017/06/12 6:29 a.m.18 views

CVE-2017-9122

The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...

7.1CVSS6.7AI score0.06487EPSS
Exploits3References3
OSV
OSV
added 2017/06/12 6:29 a.m.6 views

CVE-2017-9122

The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...

6.5CVSS6.2AI score
Exploits0References2
CVE
CVE
added 2017/06/12 6:0 a.m.81 views

CVE-2017-9122

CVE-2017-9122 affects libquicktime 1.2.4, where quicktime_read_moov in moov.c can be triggered by a crafted MP4 to cause a denial of service (infinite loop/CPU exhaustion). The issue is addressed across multiple advisories (Ubuntu USN-4545-1, Debian DLA-1042-1, openSUSE openSUSE-2017-785, Mageia ...

7.1CVSS6AI score0.06487EPSS
Exploits3References2Affected Software1
0day.today
0day.today
added 2017/06/10 12:0 a.m.87 views

libquicktime 1.2.4 - Denial of Service Vulnerability

Exploit for linux platform in category dos / poc libquicktime multiple vulnerabilities ================ Author : qflb.wu =============== Introduction: ============= The libquicktime package contains the libquicktime library, various plugins and codecs, along with graphical and command line...

7.1CVSS6.5AI score0.06487EPSS
Exploits3
exploitpack
exploitpack
added 2017/06/09 12:0 a.m.32 views

libquicktime 1.2.4 - Denial of Service

libquicktime 1.2.4 - Denial of Service libquicktime multiple vulnerabilities ================ Author : qflb.wu =============== Introduction: ============= The libquicktime package contains the libquicktime library, various plugins and codecs, along with graphical and command line utilities used f...

7.1CVSS6.5AI score0.06487EPSS
Exploits3
Rows per page
Query Builder