15 matches found
EUVD-2019-2395
Malware in sbrugna...
CVE-2019-10591
Null pointer dereference can happen when parsing udta atom which is non-standard and having invalid depth in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
The vulnerability of the print_udta function in the MP4Box multimedia platform of GPAC allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the printudta function in the MP4Box multimedia platform of GPAC is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows a remote attacker to access confidential data, compromise its integrity, and cause service failures by using a specially...
GPAC 缓冲区错误漏洞
GPAC is a multimedia framework for rich media and is distributed under the LGPL license. a heap buffer overflow vulnerability exists in the printudta function in GPAC version 1.0.1. An attacker can exploit this vulnerability via specially crafted files to cause a denial of service or execute...
CVE-2019-10591
Null pointer dereference can happen when parsing udta atom which is non-standard and having invalid depth in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
Null pointer dereference
Null pointer dereference can happen when parsing udta atom which is non-standard and having invalid depth in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
CVE-2019-10591
CVE-2019-10591 is a null pointer dereference that can occur while parsing a non-standard udta atom with invalid depth in Qualcomm/Snapdragon devices (including Snapdragon Auto, Compute, Connectivity, IoT, Wearables, etc.). The vulnerability affects a long list of Snapdragon-based platforms (APQ80...
CVE-2019-10591
Null pointer dereference can happen when parsing udta atom which is non-standard and having invalid depth in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
Apple Quicktime UDTA Parsing Heap Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of forged...
Apple QuickTime UDTA atom integer overflow
Overview Apple QuickTime contains an integer overflow in handling UDTA atoms, which may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Apple QuickTime User Data UDTA Atoms allow a user to "... define and store data associated with a QuickTim...
[Full-disclosure] Apple QuickTime udta ATOM Integer Overflow
Apple QuickTime udta ATOM Integer Overflow By Sowhat of Nevis Labs Date: 2007.03.06 http://www.nevisnetworks.com http://secway.org/advisory/AD20070306.txt http://secway.org/advisory/AD20060512.txt CVE: CVE-2007-0714 Vendor: Apple Inc. Affected Versions: Apple QuickTime versions 7.1.5 Overview: We...
QuickTime MOV file udta Atom buffer overflow
Added: 05/24/2006 CVE: CVE-2006-1460 BID: 17953 OSVDB: 25509 Background QuickTime is a media player for Windows and Mac OS platforms. Problem A buffer overflow in QuickTime allows command execution by a specially crafted Movie MOV file containing a long udta Atom. Resolution Upgrade to QuickTime...
Buffer overflow
Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime movie .MOV, as demonstrated via a large size for a udta Atom...
CVE-2006-1460
Apple QuickTime before 7.1 is affected by CVE-2006-1460 due to a heap buffer overflow in the udta Atom of MOV files. A crafted MOV containing an oversized udta Atom can trigger memory overwrite, leading to remote code execution under the user’s context. Affected products include QuickTime for Win...
Apple QuickTime udta ATOM Heap Overflow
Apple QuickTime udta ATOM Heap Overflow By Sowhat of Nevis Labs Date: 2006.05.12 http://www.nevisnetworks.com http://secway.org/advisory/AD20060512.txt Vendor: Apple Inc. Affected Versions: Apple QuickTime versions 7.1 Overview: We have discovered a critical vulnerability in Quicktime Player. The...