CVE-2004-0431
https://notcve.org/view.php?id=CVE-2004-0431
Integer overflow in Apple QuickTime (QuickTime.qts) before 6.5.1 allows attackers to execute arbitrary code via a large "number of entries" field in the sample-to-chunk table data for a .mov movie file, which leads to a heap-based buffer overflow. Desbordamiento de enteros en Apple QuickTime (QuickTime.qts) anteriores a 6.5.1 permite a atacantes ejecutar código de se elección mediante un "número de entradas" grande en la tabla de datos sample-to-chunk de un fichero de película .mov, lo que lleva un desbordamiento de búfer basado en el montón. • http://lists.apple.com/mhonarc/security-announce/msg00048.html http://marc.info/?l=bugtraq&m=108360110618389&w=2 http://marc.info/?l=ntbugtraq&m=108356485013237&w=2 http://www.kb.cert.org/vuls/id/782958 https://exchange.xforce.ibmcloud.com/vulnerabilities/16026 •
CVE-2003-0168
https://notcve.org/view.php?id=CVE-2003-0168
Buffer overflow in Apple QuickTime Player 5.x and 6.0 for Windows allows remote attackers to execute arbitrary code via a long QuickTime URL. Apple QuickTime Player 5.x y 6.0 para Windows, permiten a atacantes remotos la ejecución arbitraria de código mediante una URL QuickTime adecuada. • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0166.html http://lists.apple.com/mhonarc/security-announce/msg00027.html http://www.idefense.com/advisory/03.31.03.txt http://www.kb.cert.org/vuls/id/112553 http://www.osvdb.org/10561 http://www.securityfocus.com/archive/1/317141/30/25220/threaded http://www.securityfocus.com/archive/1/317148/30/25220/threaded http://www.securityfocus.com/bid/7247 https://exchange.xforce.ibmcloud.com/vulnerabilities/11671 •
CVE-2002-0376
https://notcve.org/view.php?id=CVE-2002-0376
Buffer overflow in Apple QuickTime 5.0 ActiveX component allows remote attackers to execute arbitrary code via a long pluginspage field. Desbordamiento de búfer en el componente ActiveX de Apple QuickTime 5.0 permite a atacantes remotos ejecutar código arbitrario mediante un campo pluginspace largo. • http://online.securityfocus.com/archive/1/293095 http://www.atstake.com/research/advisories/2002/a091002-1.txt http://www.iss.net/security_center/static/10077.php http://www.securityfocus.com/bid/5685 •
CVE-2002-0252 – Apple QuickTime 7.2/7.3 (OSX/Windows) - RSTP Response Universal
https://notcve.org/view.php?id=CVE-2002-0252
Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header. Desbordamiento de buffer en Apple Quicktime Player 5.01 y 5.02 permite que servidores web remotos ejecute código por medio de una respuesta que contiene un largo encabezamiento MIME. • https://www.exploit-db.com/exploits/4673 https://www.exploit-db.com/exploits/21286 http://marc.info/?l=bugtraq&m=101320742616105&w=2 http://www.iss.net/security_center/static/8126.php http://www.securityfocus.com/bid/4064 •
CVE-2001-0198 – Apple QuickTime plugin - Windows 4.1.2 (Japanese) Remote Overflow
https://notcve.org/view.php?id=CVE-2001-0198
Buffer overflow in QuickTime Player plugin 4.1.2 (Japanese) allows remote attackers to execute arbitrary commands via a long HREF parameter in an EMBED tag. The Apple Quicktime plugin for Windows is vulnerable to a remote buffer overflow vulnerability. • https://www.exploit-db.com/exploits/20605 http://marc.info/?l=bugtraq&m=98096678523370&w=2 http://www.exploit-db.com/exploits/20605 http://www.securityfocus.com/bid/2328 https://exchange.xforce.ibmcloud.com/vulnerabilities/6040 •