CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

149 matches found

OSV•added 2017/07/04 2:42 p.m.•4 views

SUSE-SU-2017:1769-1 Security update for libquicktime

This update for libquicktime fixes the following issues: CVE-2017-9122: A DoS in quicktimereadmoov function in moov.c via acrafted mp4 file was fixed. bsc1044077 CVE-2017-9123: An invalid memory read in lqtframeduration via a crafted mp4 file was fixed. bsc1044009 CVE-2017-9124: A NULL pointer...

7.1CVSS6.6AI score0.07643EPSS

Exploits3References15

Prion•added 2017/06/12 6:29 a.m.•18 views

Heap overflow

The quicktimevideowidth function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted mp4 file...

4.3CVSS6.2AI score0.02879EPSS

Exploits2References2Affected Software1

OSV•added 2017/06/12 6:29 a.m.•0 views

UBUNTU-CVE-2017-9125

The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted mp4 file...

6.5CVSS6.6AI score0.02879EPSS

Exploits2References4

NVD•added 2017/06/12 6:29 a.m.•8 views

CVE-2017-9122

The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...

7.1CVSS6.2AI score0.06817EPSS

Exploits3References2

UbuntuCve•added 2017/06/12 6:29 a.m.•16 views

CVE-2017-9127

The quicktimeuseratomsreadatom function in useratoms.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash via a crafted mp4 file...

6.5CVSS6.7AI score0.02879EPSS

Exploits2References3

OSV•added 2017/06/12 6:29 a.m.•1 views

DEBIAN-CVE-2017-9123

The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...

6.5CVSS6.7AI score0.02879EPSS

Exploits3References1

OSV•added 2017/06/12 6:29 a.m.•1 views

DEBIAN-CVE-2017-9124

The quicktimematch32 function in util.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...

6.5CVSS6.7AI score0.07643EPSS

Exploits3References1

OSV•added 2017/06/12 6:29 a.m.•1 views

UBUNTU-CVE-2017-9128

6.5CVSS6.5AI score0.02879EPSS

Exploits2References4

OSV•added 2017/06/12 6:29 a.m.•5 views

CVE-2017-9128

6.5CVSS6.3AI score

Exploits0References2

OSV•added 2017/06/12 6:29 a.m.•0 views

UBUNTU-CVE-2017-9124

The quicktimematch32 function in util.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted mp4 file...

6.5CVSS6.4AI score0.07643EPSS

Exploits3References4

OSV•added 2017/06/12 6:29 a.m.•2 views

CVE-2017-9123

The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...

6.5CVSS6.2AI score

Exploits0References2

Prion•added 2017/06/12 6:29 a.m.•11 views

Heap overflow

The quicktimereaddreftable function in dref.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash via a crafted mp4 file...

4.3CVSS6.3AI score0.02879EPSS

Exploits2References2Affected Software1

UbuntuCve•added 2017/06/12 6:29 a.m.•9 views

CVE-2017-9126

The quicktimereaddreftable function in dref.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash via a crafted mp4 file...

6.5CVSS6.7AI score0.02879EPSS

Exploits2References3

OSV•added 2017/06/12 6:29 a.m.•0 views

DEBIAN-CVE-2017-9127

6.5CVSS6.1AI score0.02879EPSS

Exploits2References1

OSV•added 2017/06/12 6:29 a.m.•0 views

UBUNTU-CVE-2017-9127

6.5CVSS6.6AI score0.02879EPSS

Exploits2References4

OSV•added 2017/06/12 6:29 a.m.•3 views

CVE-2017-9126

The quicktimereaddreftable function in dref.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash via a crafted mp4 file...

6.5CVSS6.4AI score

Exploits0References2

OSV•added 2017/06/12 6:29 a.m.•0 views

UBUNTU-CVE-2017-9122

The quicktimereadmoov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service infinite loop and CPU consumption via a crafted mp4 file...

6.5CVSS6.5AI score0.06817EPSS

Exploits3References4

OSV•added 2017/06/12 6:29 a.m.•0 views

UBUNTU-CVE-2017-9123

The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...

6.5CVSS6.4AI score0.02879EPSS

Exploits3References4

NVD•added 2017/06/12 6:29 a.m.•6 views

CVE-2017-9123

The lqtframeduration function in lqtquicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service invalid memory read and application crash via a crafted mp4 file...

6.5CVSS6.2AI score0.02879EPSS

Exploits3References2

OSV•added 2017/06/12 6:29 a.m.•3 views

CVE-2017-9127

6.5CVSS6.4AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by