Apple Mac OS X Quicktime 'Apple Lossless Audio Codec' Integer Overflow Vulnerability

Bugtraq ID: 48420
Class: Boundary Condition Error
CVE: CVE-2011-0211
Remote: Yes
Local: No
Published: Jun 23 2011 12:00AM
Updated: Aug 05 2011 11:30AM
Credit: Luigi Auriemma and Damian Put working with TippingPoint's Zero Day Initiative
Vulnerable: Apple QuickTime Player 7.6.8
Apple QuickTime Player 7.6.7
Apple QuickTime Player 7.6.6 (1671)
Apple QuickTime Player 7.6.6
Apple QuickTime Player 7.6.5
Apple QuickTime Player 7.6.4
Apple QuickTime Player 7.6.2
Apple QuickTime Player 7.6.1
Apple QuickTime Player 7.5.5
+ Apple Mac OS X 10.4.9
+ Apple Mac OS X 10.3.9
+ Apple Mac OS X 10.5
 + Apple Mac OS X Server 10.4.9
+ Apple Mac OS X Server 10.3.9
+ Apple Mac OS X Server 10.5
 Apple QuickTime Player 7.64.17.73
Apple QuickTime Player 7.6.9
Apple QuickTime Player 7.6
Apple QuickTime Player 7.5
Apple Mac OS X Server 10.6.6
Apple Mac OS X Server 10.6.5
Apple Mac OS X Server 10.6.5
Apple Mac OS X Server 10.6.4
Apple Mac OS X Server 10.6.3
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac Os X Server 10.6.7
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.5
Apple Mac OS X 10.6.4
Apple Mac OS X 10.6.3
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.6
Not Vulnerable: Apple QuickTime Player 7.7
Apple Mac Os X Server 10.6.8


 

Privacy Statement
Copyright 2010, SecurityFocus