Mac OS X 10.7.x < 10.7.2 Multiple Vulnerabilities

The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.2. This version contains numerous security-related fixes for the following components : - Apache - Application Firewall - ATS - BIND - Certificate Trust Policy - CFNetwork - CoreMedia - CoreProcesses - CoreStorage - Fil...

Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007)

This host is missing an important security update according to Mac OS X 10.6.5 Update/Mac OS X Security Update 2010-007 OpenVAS Vulnerability Test $Id: gbmacosxsu10-007.nasl 7052 2017-09-04 11:50:51Z teissa $ Mac OS X v10.6.4 Multiple Vulnerabilities 2010-007 Authors: Madhuri D Copyright: Copyrig...

CVE-2011-0258

Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted image description associated with an mp4v tag in a movie file...

CVE-2011-0258

CVE-2011-0258 affects Apple QuickTime on Windows. The vulnerability arises in the handling of the mp4v atom within movie files, where an improper allocation/size checking leads to memory corruption and potential remote code execution. Exploitation would require user interaction (e.g., opening a c...

CVE-2011-0258

Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted image description associated with an mp4v tag in a movie file...

Apple QuickTime 7.6.9 - QuickTimePlayer.dll ActiveX Buffer Overflow

Apple QuickTime 7.6.9 - QuickTimePlayer.dll ActiveX Buffer Overflow source: https://www.securityfocus.com/bid/49465/info Apple QuickTime is prone to a buffer-overflow vulnerability because of a failure to properly bounds-check user-supplied data. Successful exploits will allow attackers to execut...

Apple QuickTime 7.6.9 - &#039;QuickTimePlayer.dll&#039; ActiveX Buffer Overflow

source: https://www.securityfocus.com/bid/49465/info Apple QuickTime is prone to a buffer-overflow vulnerability because of a failure to properly bounds-check user-supplied data. Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user;...

QuickTime PICT PnSize Stack Overflow

Added: 08/29/2011 CVE: CVE-2011-0257 BID: 49144 OSVDB: 74687 Background QuickTime is a media player for Windows and Mac OS platforms. Problem Apple QuickTime versions prior to 7.7 are vulnerable to a stack overflow cause by improper validation of very large values in the the PnSize field of PICT...

QuickTime PICT PnSize Stack Overflow

Added: 08/29/2011 CVE: CVE-2011-0257 BID: 49144 OSVDB: 74687 Background QuickTime is a media player for Windows and Mac OS platforms. Problem Apple QuickTime versions prior to 7.7 are vulnerable to a stack overflow cause by improper validation of very large values in the the PnSize field of PICT...

Mac OS X v10.6.6 Multiple Vulnerabilities (2011-001)

This host is missing an important security update according to Mac OS X 10.6.6 Update/Mac OS X Security Update 2011-001. OpenVAS Vulnerability Test $Id: secpodmacosxsu11-001.nasl 7015 2017-08-28 11:51:24Z teissa $ Mac OS X v10.6.6 Multiple Vulnerabilities 2011-001 Authors: Antu Sanadi Copyright:...

Apple Mac OS X Quicktime整数溢出漏洞 (CVE-2011-0256)

BUGTRAQ ID: 49170 CVE ID: CVE-2011-0256 QuickTime是由苹果电脑所开发的一种多媒体架构，能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式，以及交互式全景影像的数项类型。 Apple Mac OS X Quicktime在实现上存在整数溢出漏洞，远程攻击者可利用此漏洞在受影响应用程序中执行任意代码，可能造成拒绝服务。...

ZDI-11-257: Apple QuickTime Player H.264 Slice Header Remote Code Execution Vulnerability

ZDI-11-257: Apple QuickTime Player H.264 Slice Header Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-257 August 16, 2011 -- CVE ID: CVE-2011-0247 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple Quicktime --...

Apple Quicktime Media Link src Parameter Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

Apple QuickTime 'trun' atom sampleCount Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

CVE-2011-0257

Integer signedness error in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PnSize opcode in a PICT file that triggers a stack-based buffer overflow...

Apple QuickTime PICT文件栈缓冲区溢出漏洞

Bugtraq ID: 49144 CVE ID：CVE-2011-0257 Apple QuickTime是一款流行的多媒体播放器。 Apple QuickTime处理PnSize PICT代码存在缺陷。它把无符号的16位值转换为32位值，此值之后用于内存拷贝函数的大小参数，用于把文件拷贝到栈中。结果可导致基于栈的缓冲区溢出，允许以当前用户上下文执行任意代码。 Apple QuickTime Player 7.6.8 Apple QuickTime Player 7.6.7 Apple QuickTime Player 7.6.6 1671 Apple QuickTime Player...

CentOS Update for gstreamer-plugins CESA-2009:0269 centos3 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for gstreamer-plugins CESA-2009:0270 centos4 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

APPLE-SA-2011-08-03-1 QuickTime 7.7

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-08-03-1 QuickTime 7.7 QuickTime 7.7 is now available and addresses the following: QuickTime Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista, XP SP2 or later Impact: Viewing a maliciously crafted pict file may...

CVE-2011-0248

Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted QTL file...