Quicktime Security Vulnerabilities and Issues — Quicktime CVE List

Lucene search

AppleQuicktime

20 matches found

CVE•added 2009/09/10 9:30 p.m.•52 views

CVE-2009-2798

Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file.

9.3CVSS7.7AI score0.07937EPSS

CVE•added 2009/01/21 8:30 p.m.•51 views

CVE-2009-0005

Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted H.263 encoded movie file that triggers memory corruption.

9.3CVSS7.6AI score0.04024EPSS

CVE•added 2009/06/02 6:30 p.m.•50 views

CVE-2009-0951

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC compression file.

9.3CVSS7.9AI score0.21519EPSS

CVE•added 2009/09/10 9:30 p.m.•50 views

CVE-2009-2203

Buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG-4 video file.

9.3CVSS7.7AI score0.07937EPSS

CVE•added 2009/01/21 8:30 p.m.•49 views

CVE-2009-0007

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms.

9.3CVSS7.9AI score0.35592EPSS

CVE•added 2009/09/10 9:30 p.m.•49 views

CVE-2009-2799

Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie file.

9.3CVSS7.7AI score0.07937EPSS

CVE•added 2009/01/21 8:30 p.m.•48 views

CVE-2009-0001

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted RTSP URL.

9.3CVSS9.2AI score0.06199EPSS

CVE•added 2009/01/21 8:30 p.m.•47 views

CVE-2009-0002

9.3CVSS7.9AI score0.40449EPSS

CVE•added 2009/06/02 6:30 p.m.•47 views

CVE-2009-0952

Buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted compressed PSD image.

9.3CVSS7.8AI score0.06275EPSS

CVE•added 2009/06/02 6:30 p.m.•47 views

CVE-2009-0955

Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image description atoms in an Apple video file, related to a "sign extension issue."

9.3CVSS7.7AI score0.284EPSS

CVE•added 2009/06/02 6:30 p.m.•45 views

CVE-2009-0957

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 image.

9.3CVSS8AI score0.27783EPSS

CVE•added 2009/09/10 9:30 p.m.•45 views

CVE-2009-2202

Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted H.264 movie file.

9.3CVSS7.8AI score0.10923EPSS

CVE•added 2009/01/21 8:30 p.m.•44 views

CVE-2009-0006

Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow.

9.3CVSS7.7AI score0.38337EPSS

CVE•added 2009/06/02 6:30 p.m.•44 views

CVE-2009-0954

Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie file containing crafted Clipping Region (CRGN) atom types.

9.3CVSS8AI score0.27783EPSS

CVE•added 2009/06/02 6:30 p.m.•44 views

CVE-2009-0956

Apple QuickTime before 7.6.2 does not properly initialize memory before use in handling movie files, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie containing a user data atom of size zero.

9.3CVSS7.7AI score0.0888EPSS

CVE•added 2009/06/02 6:30 p.m.•43 views

CVE-2009-0185

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted MS ADPCM encoded audio data in an AVI movie file.

9.3CVSS8AI score0.28197EPSS

CVE•added 2009/01/21 8:30 p.m.•42 views

CVE-2009-0003

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure.

9.3CVSS7.9AI score0.31805EPSS

CVE•added 2009/01/21 8:30 p.m.•42 views

CVE-2009-0004

Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted MP3 audio file.

9.3CVSS7.8AI score0.06593EPSS

CVE•added 2009/06/02 6:30 p.m.•41 views

CVE-2009-0953

Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.

9.3CVSS8AI score0.21519EPSS

CVE•added 2009/06/02 6:30 p.m.•39 views

CVE-2009-0188

Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file.

9.3CVSS7.8AI score0.09031EPSS