Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:23145
HistoryOct 28, 2011 - 12:00 a.m.

Apple QuickTime 7.7.1之前版本TKHD 元素处理远程代码执行漏洞

2011-10-2800:00:00
Root
www.seebug.org
11

0.101 Low

EPSS

Percentile

94.3%

JSON

BUGTRAQ ID: 50403
CVE ID: CVE-2011-3251

QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。

Apple QuickTime 7.7.1之前版本在处理特制视频文件时存在远程代码执行漏洞,攻击者可利用此漏洞以当前用户权限执行任意代码,导致应用意外终止。此漏洞不影响Mac OS X系统。

Apple QuickTime Player 7.x
厂商补丁:

Apple

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://support.apple.com/

Related

securityvulns 3
cve 1
prion 1
zdi 1
nessus 3
openvas 2
securityvulns
securityvulns
ZDI-11-316 : Apple QuickTime H264 Matrix Conversion Remote Code Execution Vulnerability
2011-10-31 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-20 00:00:00
APPLE-SA-2011-10-26-1 QuickTime 7.7.1
2011-10-31 00:00:00
cve
cve
CVE-2011-3251
2011-10-28 02:49:00
prion
prion
Memory corruption
2011-10-28 02:49:00
zdi
zdi
Apple QuickTime H264 Matrix Conversion Remote Code Execution Vulnerability
2011-10-27 00:00:00
nessus
nessus
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
2011-10-28 00:00:00
openvas
openvas
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
2011-11-03 00:00:00
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
2011-11-03 00:00:00

0.101 Low

EPSS

Percentile

94.3%

JSON
Related for SSV:23145
securityvulns3cve1prion1zdi1nessus3openvas2