RETIRED: Apple QuickTime Prior To 7.7.4 Multiple Arbitrary Code Execution Vulnerabilities

Apple QuickTime is prone to multiple vulnerabilities that may allow remote attackers to execute arbitrary code.

These issues arise when the application handles specially crafted files. Successful exploits may allow attackers to execute arbitrary code in the context of the currently logged-in user; failed exploit attempts will cause denial-of-service conditions.

Versions prior to QuickTime 7.7.4 are vulnerable on Windows 7, Vista, and XP.

This BID is being retired. The following individual records exist to better document the issues:

60109 Apple QuickTime CVE-2013-0987 Memory Corruption Vulnerability
60110 Apple QuickTime CVE-2013-1015 Memory Corruption Vulnerability
60108 Apple QuickTime CVE-2013-1020 Memory Corruption Vulnerability
60092 Apple QuickTime CVE-2013-1016 Buffer Overflow Vulnerability
60104 Apple QuickTime CVE-2013-1022 Buffer Overflow Vulnerability
60103 Apple QuickTime CVE-2013-1021 Buffer Overflow Vulnerability
60102 Apple QuickTime CVE-2013-1019 Buffer Overflow Vulnerability
60101 Apple QuickTime CVE-2013-0989 Buffer Overflow Vulnerability
60100 Apple QuickTime CVE-2013-0988 Buffer Overflow Vulnerability
60099 Apple QuickTime CVE-2013-0986 Buffer Overflow Vulnerability
60098 Apple QuickTime CVE-2013-1018 Buffer Overflow Vulnerability
60097 Apple QuickTime CVE-2013-1017 Buffer Overflow Vulnerability


 

Privacy Statement
Copyright 2010, SecurityFocus