Lucene search

K
AppleQuicktime7.1

71 matches found

CVE
CVE
added 2010/12/09 8:0 p.m.43 views

CVE-2010-0530

Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user account, which allows local users to obtain sensitive information by reading files in this directory.

2.1CVSS5.1AI score0.00107EPSS
CVE
CVE
added 2011/08/04 2:45 a.m.43 views

CVE-2011-0249

Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSC atoms in a QuickTime movie file.

9.3CVSS8.7AI score0.05695EPSS
CVE
CVE
added 2009/01/21 8:30 p.m.42 views

CVE-2009-0003

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure.

9.3CVSS7.9AI score0.31805EPSS
CVE
CVE
added 2009/01/21 8:30 p.m.42 views

CVE-2009-0004

Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted MP3 audio file.

9.3CVSS7.8AI score0.06593EPSS
CVE
CVE
added 2012/05/16 10:12 a.m.42 views

CVE-2012-0665

Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.

9.3CVSS7.9AI score0.03972EPSS
CVE
CVE
added 2007/07/15 9:30 p.m.41 views

CVE-2007-2394

Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via crafted (1) title and (2) author fields in an SMIL file, related to improper calculations for memory allocation.

9.3CVSS7.5AI score0.48805EPSS
CVE
CVE
added 2008/09/03 7:42 p.m.41 views

CVE-2008-1739

Apple QuickTime before 7.4.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted ftyp atoms in a movie file, which triggers memory corruption.

6.8CVSS7.5AI score0.01258EPSS
CVE
CVE
added 2009/06/02 6:30 p.m.41 views

CVE-2009-0953

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.

9.3CVSS8AI score0.21519EPSS
CVE
CVE
added 2011/10/28 2:49 a.m.41 views

CVE-2011-3247

Integer overflow in Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT file.

9.3CVSS9.1AI score0.02692EPSS
CVE
CVE
added 2006/09/12 11:7 p.m.40 views

CVE-2006-4389

Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted FlashPix (FPX) file, which triggers an exception that leads to an operation on an uninitialized object.

5.1CVSS7AI score0.32055EPSS
CVE
CVE
added 2007/04/26 8:19 p.m.40 views

CVE-2007-2296

Integer overflow in the FlipFileTypeAtom_BtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V (MP4) file.

9.3CVSS7.4AI score0.33595EPSS
CVE
CVE
added 2007/07/15 9:30 p.m.40 views

CVE-2007-2397

QuickTime for Java in Apple Quicktime before 7.2 does not properly check permissions, which allows remote attackers to disable security controls and execute arbitrary code via crafted Java applets.

9.3CVSS7.3AI score0.38251EPSS
CVE
CVE
added 2012/05/16 10:12 a.m.40 views

CVE-2012-0265

Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pathname for a file.

9.3CVSS8AI score0.05677EPSS
CVE
CVE
added 2008/09/11 1:13 a.m.39 views

CVE-2008-3635

Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafte...

9.3CVSS7.9AI score0.04267EPSS
CVE
CVE
added 2009/06/02 6:30 p.m.39 views

CVE-2009-0188

Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file.

9.3CVSS7.8AI score0.09031EPSS
CVE
CVE
added 2007/04/26 8:19 p.m.38 views

CVE-2007-2295

Heap-based buffer overflow in the JVTCompEncodeFrame function in Apple Quicktime 7.1.5 and other versions before 7.2 allows remote attackers to execute arbitrary code via a crafted H.264 MOV file.

9.3CVSS7.6AI score0.39754EPSS
CVE
CVE
added 2007/07/15 9:30 p.m.38 views

CVE-2007-2392

Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via a crafted movie file that triggers memory corruption.

9.3CVSS7.2AI score0.10438EPSS
CVE
CVE
added 2007/07/15 9:30 p.m.37 views

CVE-2007-2393

The design of QuickTime for Java in Apple Quicktime before 7.2 allows remote attackers to bypass certain security controls and write to process memory via Java applets, possibly leading to arbitrary code execution.

9.3CVSS7.3AI score0.11782EPSS
CVE
CVE
added 2007/07/15 9:30 p.m.37 views

CVE-2007-2396

The JDirect support in QuickTime for Java in Apple Quicktime before 7.2 exposes certain dangerous interfaces, which allows remote attackers to execute arbitrary code via crafted Java applets.

9.3CVSS7.3AI score0.29102EPSS
CVE
CVE
added 2008/09/11 1:13 a.m.37 views

CVE-2008-3629

Apple QuickTime before 7.5.5 allows remote attackers to cause a denial of service (application crash) via a crafted PICT image that triggers an out-of-bounds read.

4.3CVSS6AI score0.01369EPSS
CVE
CVE
added 2011/08/04 2:45 a.m.35 views

CVE-2011-0247

Multiple stack-based buffer overflows in Apple QuickTime before 7.7 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie.

9.3CVSS7.7AI score0.04248EPSS
Total number of security vulnerabilities71