CVSS: 7.8EPSS: 11%CPEs: 1EXPL: 0CVE-2008-1582
https://notcve.org/view.php?id=CVE-2008-1582
10 Jun 2008 — Unspecified vulnerability in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted AAC-encoded file that triggers memory corruption. Vulnerabilidad no especificada en Apple QuickTime anterior a 7.5, permite a atacantes remotos provocar una denegación de servicio (Caída) y la posibilidad de ejecutar código de su elección a través de un archivo de ACC-encodec que genera una corrupción de memoria. • http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 12%CPEs: 1EXPL: 0CVE-2008-1583
https://notcve.org/view.php?id=CVE-2008-1583
10 Jun 2008 — Heap-based buffer overflow in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PICT image, a different vulnerability than CVE-2008-1581. Desbordamiento de búfer basado en montículo en Apple QuickTime anterior a 7.5, permite a atacantes remotos provocar una denegación de servicio (Caída) y la posibilidad de ejecutar código de su elección a través de una imagen PICT. Vulnerabilidad distinta de CVE-2008-1581. • http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 19%CPEs: 1EXPL: 0CVE-2008-1584 – Apple QuickTime Indeo Video Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2008-1584
10 Jun 2008 — Stack-based buffer overflow in Indeo.qtx in Apple QuickTime before 7.5 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted Indeo video codec content in a movie file. Desbordamiento de búfer basado en pila en Apple QuickTime anterior a 7.5, permite a atacantes remotos provocar una denegación de servicio (Caída) y la posibilidad de ejecutar código de su elección a través de un contenido "Indeo video codec" manipulado. This vulnerability allows attackers to execut... • http://lists.apple.com/archives/security-announce/2008/Jun/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 9%CPEs: 1EXPL: 0CVE-2008-1585 – Apple QuickTime SMIL qtnext Redirect File Execution Vulnerability
https://notcve.org/view.php?id=CVE-2008-1585
10 Jun 2008 — Apple QuickTime before 7.5 uses the url.dll!FileProtocolHandler handler for unrecognized URIs in qt:next attributes within SMIL text in video files, which sends these URIs to explorer.exe and thereby allows remote attackers to execute arbitrary programs, as originally demonstrated by crafted file: URLs. Apple QuickTime anterior a 7.5 permite a atacantes remotos ejecutar programas de su elección a través de un archivo manipulado: URLs. This vulnerability allows remote attackers to execute arbitrary code on v... • http://lists.apple.com/archives/security-announce/2008//Jul/msg00000.html • CWE-20: Improper Input Validation •