42 matches found
EUVD-2009-0402
Malware in sbrugna...
EUVD-2006-4951
Malware in sbrugna...
CVE-2019-1430
A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media files.An attacker who successfully exploited this vulnerability could gain the same user rights as the local user, aka 'Microsoft Windows Media Foundation Remote Code...
Arbitrary Code Execution
gstreamer-plugins-good is vulnerable to arbitrary code execution. The vulnerability exists as multiple heap buffer overflows and an array indexing error were found in the GStreamer's QuickTime media file format decoding plugin. An attacker could create a carefully-crafted QuickTime media .mov fil...
Microsoft DirectShow Size Validation Remote Code Execution (MS09-028) - Ver2 (CVE-2009-1539)
Microsoft DirectShow is used for streaming media on Microsoft Windows operating systems. It is used for high-quality capture and playback of multimedia streams. The vulnerability is due to an error in the Microsoft DirectShow component that fails to properly validate certain size fields within...
Oracle Linux 4 : gstreamer-plugins (ELSA-2009-0270)
From Red Hat Security Advisory 2009:0270 : Updated gstreamer-plugins packages that fix one security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. The gstreamer-plugins package contains...
Scientific Linux Security Update : gstreamer-plugins on SL3.x, SL4.x i386/x86_64
An array indexing error was found in the GStreamer's QuickTime media file format decoding plug-in. An attacker could create a carefully-crafted QuickTime media .mov file that would cause an application using GStreamer to crash or, potentially, execute arbitrary code if played by a victim...
Scientific Linux Security Update : gstreamer-plugins-good on SL5.x i386/x86_64
Multiple heap buffer overflows and an array indexing error were found in the GStreamer's QuickTime media file format decoding plugin. An attacker could create a carefully-crafted QuickTime media .mov file that would cause an application using GStreamer to crash or, potentially, execute arbitrary...
CentOS Update for gstreamer-plugins CESA-2009:0270 centos4 i386
Check for the Version of gstreamer-plugins OpenVAS Vulnerability Test CentOS Update for gstreamer-plugins CESA-2009:0270 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute i...
CentOS Update for gstreamer-plugins CESA-2009:0269 centos3 i386
Check for the Version of gstreamer-plugins OpenVAS Vulnerability Test CentOS Update for gstreamer-plugins CESA-2009:0269 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute i...
Mandriva Security Advisory MDVSA-2009:319 (xine-lib)
The remote host is missing an update to xine-lib announced via advisory MDVSA-2009:319. OpenVAS Vulnerability Test $Id: mdksa2009319.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:319 xine-lib Authors: Thomas Reinke Copyright: Copyright c 2009 E-Sof...
Microsoft DirectX QuickTime媒体文件解析代码执行漏洞(MS09-028)
BUGTRAQ ID: 35139 CVECAN ID: CVE-2009-1537 Microsoft DirectX是Windows操作系统中的一项功能,流媒体在玩游戏或观看视频时通过这个功能支持图形和声音。 DirectX的DirectShow组件(quartz.dll)在解析畸形的QuickTime媒体文件时存在错误,用户受骗打开了恶意的媒体文件就会导致执行任意代码。由于用户可能在浏览器中安装媒体播放插件,因此访问恶意网页就足以导致播放QuickTime文件,触发Quartz.dll中的漏洞。 Microsoft DirectX 9.0 Microsoft DirectX 8.1...
Input validation
The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 performs updates to pointers without properly validating unspecified data values, which allows remote attackers to execute...
CVE-2009-1538
The QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 performs updates to pointers without properly validating unspecified data values, which allows remote attackers to execute...
Microsoft DirectX QuickTime媒体文件解析代码执行漏洞
BUGTRAQ ID: 35139 CVECAN ID: CVE-2009-1537 Microsoft DirectX是Windows操作系统中的一项功能,流媒体在玩游戏或观看视频时通过这个功能支持图形和声音。 DirectX的DirectShow组件(quartz.dll)在解析畸形的QuickTime媒体文件时存在错误,用户受骗打开了恶意的媒体文件就会导致执行任意代码。由于用户可能在浏览器中安装媒体播放插件,因此访问恶意网页就足以导致播放QuickTime文件,触发Quartz.dll中的漏洞。 Microsoft DirectX 9.0 Microsoft DirectX 8.1...
Design/Logic Flaw
Unspecified vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow in Microsoft DirectX 7.0 through 9.0c on Windows 2000 SP4, Windows XP SP2 and SP3, and Windows Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted QuickTime media file, as...
Mandriva Linux Security Advisory : xine-lib (MDVSA-2009:020)
Failure on Ogg files manipulation can lead remote attackers to cause a denial of service by using crafted files CVE-2008-3231. Failure on manipulation of either MNG or Real or MOD files can lead remote attackers to cause a denial of service by using crafted files CVE: CVE-2008-5233. Heap-based...
Mandriva Linux Security Advisory : gstreamer0.10-plugins-good (MDVSA-2009:035)
Security vulnerabilities have been discovered and corrected in gstreamer0.10-plugins-good, might allow remote attackers to execute arbitrary code via a malformed QuickTime media file CVE-2009-0386, CVE-2009-0387, CVE-2009-0397. The updated packages have been patched to prevent this. %NASLMINLEVEL...
Mandrake Security Advisory MDVSA-2009:035 (gstreamer0.10-plugins-good)
The remote host is missing an update to gstreamer0.10-plugins-good announced via advisory MDVSA-2009:035. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Mandrake Security Advisory MDVSA-2009:035 (gstreamer0.10-plugins-good)
The remote host is missing an update to gstreamer0.10-plugins-good announced via advisory MDVSA-2009:035. OpenVAS Vulnerability Test $Id: mdksa2009035.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:035 gstreamer0.10-plugins-good Authors: Thomas Rein...