Apple QuickTime JP2 Image Uninitialized Memory Remote Code Execution Vulnerability

Bugtraq ID: 44795
Class: Design Error
CVE: CVE-2010-3788
Remote: Yes
Local: No
Published: Nov 10 2010 12:00AM
Updated: Dec 07 2010 08:35PM
Credit: Damian Put and Procyun, working with TippingPoint's Zero Day Initiative
Vulnerable: Apple QuickTime Player 7.6.8
Apple QuickTime Player 7.6.7
Apple QuickTime Player 7.6.6 (1671)
Apple QuickTime Player 7.6.6
Apple QuickTime Player 7.6.5
Apple QuickTime Player 7.6.4
Apple QuickTime Player 7.6.2
Apple QuickTime Player 7.6.1
Apple QuickTime Player 7.64.17.73
Apple QuickTime Player 7.6
Apple Mac OS X Server 10.6.4
Apple Mac OS X Server 10.6.3
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.4
Apple Mac OS X 10.6.3
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.6
Not Vulnerable: Apple QuickTime Player 7.6.9
Apple Mac OS X Server 10.6.5


 

Privacy Statement
Copyright 2010, SecurityFocus