Apple QuickTime GIF File LZW Compression Remote Code Execution Vulnerability

Bugtraq ID: 44785
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2010-3795
Remote: Yes
Local: No
Published: Nov 10 2010 12:00AM
Updated: Dec 07 2010 08:35PM
Credit: Anonymous researcher working with TippingPoint's Zero Day Initiative
Vulnerable: Apple QuickTime Player 7.6.8
Apple QuickTime Player 7.6.7
Apple QuickTime Player 7.6.6 (1671)
Apple QuickTime Player 7.6.6
Apple QuickTime Player 7.6.5
Apple QuickTime Player 7.6.4
Apple QuickTime Player 7.6.2
Apple QuickTime Player 7.6.1
Apple QuickTime Player 7.64.17.73
Apple QuickTime Player 7.6
Apple Mac OS X Server 10.6.4
Apple Mac OS X Server 10.6.3
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.4
Apple Mac OS X 10.6.3
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.6
Not Vulnerable: Apple QuickTime Player 7.6.9
Apple Mac OS X Server 10.6.5


 

Privacy Statement
Copyright 2010, SecurityFocus