6 matches found
EUVD-2010-0559
Malware in sbrugna...
Apple Mac OS X PNG文件MediaVideo处理缓冲区溢出漏洞
BUGTRAQ ID: 51814 CVE ID: CVE-2011-3460 Mac OS是一套运行于苹果的Macintosh系列电脑上的操作系统。 Apple Mac OS X在为.png格式编码的视频解码分配空间时会触发特定的漏洞,计算surface的空间时,应用会信任MediaVideo标头中的比特位深。在解码过程中,应用会在surface的边界之外写入,在实现上存在缓冲区溢出漏洞,成功利用后可允许攻击者执行任意代码。受影响版本:Mac OS X 10.6.8 、Mac OS X Server 10.6.8、Mac OS X 10.7-10.7.2、Mac OS X Server...
Apple Quicktime PNG Depth Decoding Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of AppleQuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs when the...
ZDI-10-042: Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability
ZDI-10-042: Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-042 April 2, 2010 -- CVE ID: CVE-2010-0528 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- TippingPointTM IPS Customer Protection:...
Apple QuickTime MediaVideo Compressor Name Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists during the parsing of...
CVE-2010-0528
Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via crafted color tables in a movie file, related to malformed MediaVideo data, a sample description atom STSD, and a crafted length value...