Apple

Quicktime

246 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2008-0234

Exploit
  • EPSS 44.14%
  • Published 11.01.2008 02:46:00
  • Last modified 09.04.2025 00:30:58

Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404...

6.8

CVE-2007-4706

  • EPSS 4.04%
  • Published 15.12.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows remote attackers to execute arbitrary code via a crafted QTL file.

9.3

CVE-2007-4707

  • EPSS 4.96%
  • Published 15.12.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Multiple unspecified vulnerabilities in the Flash media handler in Apple QuickTime before 7.3.1 allow remote attackers to execute arbitrary code or have other unspecified impacts via a crafted QuickTime movie.

10

CVE-2007-6238

  • EPSS 2.74%
  • Published 04.12.2007 18:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Apple QuickTime 7.2 on Windows XP allows remote attackers to execute arbitrary code via unknown attack vectors, probably a different vulnerability than CVE-2007-6166. NOTE: this information is based upon a vague advisory...

9.3

CVE-2007-6166

  • EPSS 84.23%
  • Published 29.11.2007 01:46:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Conten...

6.8

CVE-2007-4674

  • EPSS 2.35%
  • Published 27.11.2007 20:46:00
  • Last modified 09.04.2025 00:30:58

An "integer arithmetic" error in Apple QuickTime 7.2 allows remote attackers to execute arbitrary code via a crafted movie file containing a movie atom with a large size value, which triggers a stack-based buffer overflow.

9.3

CVE-2007-2395

  • EPSS 17.1%
  • Published 07.11.2007 23:46:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a crafted image description atom in a movie file, related to "memory corruption."

9.3

CVE-2007-3750

  • EPSS 20.47%
  • Published 07.11.2007 23:46:00
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via crafted Sample Table Sample Descriptor (STSD) atoms in a movie file.

7.6

CVE-2007-4672

  • EPSS 38.75%
  • Published 07.11.2007 23:46:00
  • Last modified 09.04.2025 00:30:58

Stack-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via an invalid UncompressedQuickTimeData opcode length in a PICT image.

9.3

CVE-2007-4673

  • EPSS 1.38%
  • Published 04.10.2007 23:17:00
  • Last modified 09.04.2025 00:30:58

Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista allows remote attackers to execute arbitrary commands via a URL in the qtnext field in a crafted QTL file. NOTE: this issue may be related to CVE-2006-4965 or CVE-2...