Quicktime@3.0 Security Vulnerabilities and Issues — Quicktime@3.0 CVE List

Lucene search

AppleQuicktime3.0

5 matches found

CVE•added 2007/11/29 1:46 a.m.•54 views

CVE-2007-6166

Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.

9.3CVSS7.6AI score0.83919EPSS

CVE•added 2007/03/05 10:19 p.m.•42 views

CVE-2007-0712

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MIDI file.

9.3CVSS7.6AI score0.24989EPSS

CVE•added 2007/03/05 10:19 p.m.•42 views

CVE-2007-0714

Integer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted QuickTime movie with a User Data Atom (UDTA) with an Atom size field with a large value.

9.3CVSS7.5AI score0.58639EPSS

CVE•added 2007/01/05 12:28 a.m.•41 views

CVE-2007-0059

Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3 allows remote user-assisted attackers to execute arbitrary code and list filesystem contents via a QuickTime movie (.MOV) with an HREF Track (HREFTrack) that contains an automatic action tag with a local URI, which is executed in a lo...

6.8CVSS6.7AI score0.11462EPSS

CVE•added 2007/03/05 10:19 p.m.•34 views

CVE-2007-0711

Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP video file.

9.3CVSS7.5AI score0.23911EPSS