CVSS: 9.3EPSS: 97%CPEs: 51EXPL: 1CVE-2012-3753 – Apple QuickTime 7.7.2 - MIME Type Buffer Overflow
https://notcve.org/view.php?id=CVE-2012-3753
Buffer overflow in the plugin in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MIME type. Desbordamiento de búfer en Apple QuickTime antes de v7.7.3 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de un tipo MIME manipulado. • https://www.exploit-db.com/exploits/22973 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://packetstormsecurity.com/files/118421/Apple-QuickTime-7.7.2-MIME-Type-Buffer-Overflow.html http://secunia.com/advisories/51226 http://support.apple.com/kb/HT5581 https://exchange.xforce.ibmcloud.com/vulnerabilities/79900 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15947 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 3%CPEs: 51EXPL: 0CVE-2012-3754
https://notcve.org/view.php?id=CVE-2012-3754
Use-after-free vulnerability in the Clear method in the ActiveX control in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors. Vulnerabilidad de uso después de liberación en el método Clear en el control ActiveX de QuickTime de Apple antes de v7.7.3 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de vectores no especificados. • http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://secunia.com/advisories/51226 http://support.apple.com/kb/HT5581 https://exchange.xforce.ibmcloud.com/vulnerabilities/79901 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15986 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 80%CPEs: 51EXPL: 1CVE-2012-3755 – Apple QuickTime 7.7.2 - Targa image Buffer Overflow
https://notcve.org/view.php?id=CVE-2012-3755
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Targa image. Desbordamiento de búfer en Apple QuickTime antes de v7.7.3 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de una imagen Targa manipulada. Apple QuickTime versions 7.7.2 and below suffer from a buffer overflow vulnerability in the handling of TGA files. • https://www.exploit-db.com/exploits/22855 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://packetstormsecurity.org/files/118231/Apple-QuickTime-7.7.2-Buffer-Overflow.html http://secunia.com/advisories/51226 http://support.apple.com/kb/HT5581 http://www.securityfocus.com/bid/56551 https://exchange.xforce.ibmcloud.com/vulnerabilities/79902 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16002 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 2%CPEs: 51EXPL: 0CVE-2012-3756
https://notcve.org/view.php?id=CVE-2012-3756
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted rnet box in an MP4 movie file. Desbordamiento de búfer en Apple QuickTime antes de v7.7.3 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de rnet en un archivo de vídeo MP4. • http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html http://osvdb.org/87091 http://secunia.com/advisories/51226 http://support.apple.com/kb/HT5581 https://exchange.xforce.ibmcloud.com/vulnerabilities/79903 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16065 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 51EXPL: 0CVE-2012-3757
https://notcve.org/view.php?id=CVE-2012-3757
Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file. Apple QuickTime antes de v7.7.3 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un archivo PICT manipulado. • http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://osvdb.org/87092 http://secunia.com/advisories/51226 http://support.apple.com/kb/HT5581 http://technet.microsoft.com/en-us/security/msvr/msvr12-021 https://exchange.xforce.ibmcloud.com/vulnerabilities/79896 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16167 •