|
|
RETIRED: Apple QuickTime Prior To 7.7 Multiple Arbitrary Code Execution Vulnerabilities
Apple QuickTime is prone to multiple vulnerabilities that may allow remote attackers to execute arbitrary code. These issues arise when the application handles specially crafted pict, GIF, H.264, QTL, and QuickTime files. Successful exploits may allow attackers to execute arbitrary code in the context of the currently logged-in user; failed exploit attempts will cause denial-of-service conditions. Versions prior to QuickTime 7.7 are vulnerable on Windows 7, Vista, XP, and Mac OS X platforms. This BID is being retired. The following individual records exist to better document the issues: 49028 Apple QuickTime CVE-2011-0245 Pict File Buffer Overflow Vulnerability 49029 Apple QuickTime CVE-2011-0246 GIF Image Heap Buffer Overflow Vulnerability 49030 Apple QuickTime CVE-2011-0247 H.264 Movie Files Multiple Buffer Overflow Vulnerabilities 49031 Apple QuickTime ActiveX QTL File CVE-2011-0248 Stack Buffer Overflow Vulnerability 49034 Apple QuickTime CVE-2011-0249 STSC Atoms Heap Buffer Overflow Vulnerability 49035 Apple QuickTime CVE-2011-0250 STSS Atoms Heap Buffer Overflow Vulnerability 49036 Apple QuickTime CVE-2011-0251 STSZ Atoms Heap Buffer Overflow Vulnerability 49038 Apple QuickTime CVE-2011-0252 STTS Atoms Heap Buffer Overflow Vulnerability |
|
Privacy Statement |