297 matches found
[SECURITY] [DSA 2000-1] New ffmpeg packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2000-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 18, 2010 http://www.debian.org/security/faq -...
In Rare Move, MS Disables Old Code
Microsoft has decided to disable a 17-year-old video codec in older versions of Windows rather than patch multiple vulnerabilities, according to the company’s security team. Read the full article. Computerworld...
CVE-2009-0959
The MPEG-4 video codec in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service device reset via a crafted MPEG-4 video file that triggers an "input validation issue."...
CVE-2009-0959
The MPEG-4 video codec in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service device reset via a crafted MPEG-4 video file that triggers an "input validation issue."...
CVE-2009-0959
CVE-2009-0959 affects Apple iPhone OS 1.0–2.2.1 and iPhone OS for iPod touch 1.1–2.2.1. The vulnerability is in the MPEG-4 video codec and is caused by an input validation issue in a crafted MPEG-4 video file, leading to a denial of service (device reset). Exploitation details are not provided in...
Mac OS X malware posing as fake video codec
From ZDNet Dancho Danchev Researchers from ParetoLogic are reporting on a newly discovered Mac OS X malware variant posing as fake video ActiveX object paretologic.com found at a bogus Macintosh PortTube site. The use of fake video codecs is a social engineering tactic exclusively used by malware...
Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities - Windows
Apple QuickTime is prone to multiple arbitrary code execution vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
ZDI-08-057: Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability
ZDI-08-057: Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-057 September 9, 2008 -- CVE ID: CVE-2008-3635 -- Affected Vendors: Apple -- Affected Products: Apple Quicktime -- Vulnerability Details: This vulnerability allows...
Apple QuickTime IV32 Codec Parsing Stack Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of QuickTim...
CVE-2008-1584
Stack-based buffer overflow in Indeo.qtx in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service crash or execute arbitrary code via crafted Indeo video codec content in a movie file...
Stack overflow
Stack-based buffer overflow in Indeo.qtx in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service crash or execute arbitrary code via crafted Indeo video codec content in a movie file...
CVE-2008-1584
Stack-based buffer overflow in Indeo.qtx in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service crash or execute arbitrary code via crafted Indeo video codec content in a movie file...
Apple QuickTime Indeo Video Buffer Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple Quicktime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
QuickTime < 7.5 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.5. Such versions contain several vulnerabilities : - There are two heap-based buffer overflows in QuickTime's handling of PICT image files that could result in a program crash or arbitrary code execution CVE-2008-1581 a...
QuickTime < 7.5 Multiple Vulnerabilities (Mac OS X)
The version of QuickTime installed on the remote Mac OS X host is older than 7.5. Such versions contain several vulnerabilities : - There is a heap-based buffer overflow in QuickTime's handling of PICT image files that could result in a program crash or arbitrary code execution CVE-2008-1583. -...
[ GLSA 200708-02 ] Xvid: Array indexing vulnerabilities
Gentoo Linux Security Advisory GLSA 200708-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity:...
Xvid: Array indexing vulnerabilities
Background Xvid is a popular open source video codec licensed under the GPL. Description Trixter Jack discovered an array indexing error in the getintrablock function in the file src/bitstream/mbcoding.c. The getinterblockh263 and getinterblockmpeg functions in the same file were also reported as...