Lucene search
K

8 matches found

RedHat Linux
RedHat Linux
added 2023/05/09 10:1 a.m.5 views

gstreamer-plugins-good: Potential heap overwrite in mp4 demuxing using zlib decompression

A flaw was found in GStreamer. An integer overflow can lead to a heap-based buffer overflow in the qt demuxer when processing a specially crafted QuickTime/MP4 file using zlib decompression. This vulnerability can result in application crash, memory corruption, and code execution...

7.8CVSS6.1AI score0.00437EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.4 views

The vulnerability of the Media Foundation component in Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Media Foundation component in Windows operating systems is related to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created QuickTime file...

7.3CVSS7.6AI score0.12956EPSS
Exploits0References3
OSV
OSV
added 2019/11/12 7:15 p.m.5 views

CVE-2019-1430

A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media files.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'Microsoft Windows Media Foundation Remote Code...

7.8CVSS7.7AI score0.12956EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/10/25 12:0 a.m.28 views

Amazon Linux 2 : exempi (ALAS-2019-1321)

An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles/source/FormatSupport/RIFF.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .avi file.CVE-2017-18233 An issue was discovered in Exempi before 2.4.3. It...

7.8CVSS6.3AI score0.01707EPSS
Exploits5References6
OSV
OSV
added 2018/03/15 7:29 p.m.0 views

DEBIAN-CVE-2017-18238

An issue was discovered in Exempi before 2.4.4. The TradQTManager::ParseCachedBoxes function in XMPFiles/source/FormatSupport/QuickTimeSupport.cpp allows remote attackers to cause a denial of service infinite loop via crafted XMP data in a .qt file...

5.5CVSS6.8AI score0.01449EPSS
Exploits1References1
CNVD
CNVD
added 2015/08/19 12:0 a.m.1 views

Apple OS X Quartz Composer Framework Memory Corruption Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A memory corruption vulnerability in the Apple OS X Quartz Composer Framework's handling of QuickTime files allows remote attackers to exploit the vulnerability to construct malicious files that can be parsed by an application, whic...

6.8CVSS7.3AI score0.02904EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2009/02/06 12:45 p.m.3 views

gstreamer-plugins: Array index error while parsing malformed QuickTime media files

Array index error in the gstqtptrakhandler function in gst/qtdemux/qtdemux.c in GStreamer Plug-ins aka gstreamer-plugins 0.6.0 allows remote attackers to have an unknown impact via a crafted QuickTime media file...

9.3CVSS5.9AI score0.0319EPSS
Exploits1References4
Zero Day Initiative
Zero Day Initiative
added 2008/04/03 12:0 a.m.29 views

Apple QuickTime Run Length Encoding Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.8CVSS4.1AI score0.06947EPSS
Exploits1References1
Rows per page
Query Builder