Quicktime Security Vulnerabilities and Issues — Quicktime CVE List

Lucene search

AppleQuicktime

5 matches found

CVE•added 2008/01/11 2:46 a.m.•56 views

CVE-2008-0234

Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.

9.3CVSS7.5AI score0.4414EPSS

CVE•added 2008/01/16 3:0 a.m.•38 views

CVE-2008-0032

Apple QuickTime before 7.4 allows remote attackers to execute arbitrary code via a movie file containing a Macintosh Resource record with a modified length value in the resource header, which triggers heap corruption.

5.8CVSS7.2AI score0.06166EPSS

CVE•added 2008/01/16 3:0 a.m.•36 views

CVE-2008-0033

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a movie file with Image Descriptor (IDSC) atoms containing an invalid atom size, which triggers memory corruption.

9.3CVSS7.3AI score0.33607EPSS

CVE•added 2008/01/16 3:0 a.m.•33 views

CVE-2008-0036

Buffer overflow in Apple QuickTime before 7.4 allows remote attackers to execute arbitrary code via a crafted compressed PICT image, which triggers the overflow during decoding.

6.8CVSS7.5AI score0.14708EPSS

CVE•added 2008/01/16 2:0 a.m.•29 views

CVE-2008-0031

Unspecified vulnerability in Apple QuickTime before 7.4 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted Sorenson 3 video file, which triggers memory corruption.

5.8CVSS7.4AI score0.02761EPSS