CVSS: 9.3EPSS: 5%CPEs: 45EXPL: 0CVE-2014-1249 – Apple Security Advisory 2014-02-25-1
https://notcve.org/view.php?id=CVE-2014-1249
26 Feb 2014 — Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PSD image. Desbordamiento de buffer en Apple QuickTime anterior a 7.7.5 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de una imagen PSD manipulada. OS X Mavericks 10.9.2 and Security Update 2014-001 is now available and addresses multiple security issues including the recent... • http://support.apple.com/kb/HT6150 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 3%CPEs: 45EXPL: 0CVE-2014-1250 – Apple Security Advisory 2014-02-25-1
https://notcve.org/view.php?id=CVE-2014-1250
26 Feb 2014 — Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file. Apple QuickTime anterior a 7.7.5 no realiza debidamente una operación de intercambio de bytes, lo que permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (acceso a memoria fuera de rango y caída de aplicación) ... • http://support.apple.com/kb/HT6150 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 6%CPEs: 45EXPL: 0CVE-2014-1251 – Apple QuickTime clef Atom Heap Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2014-1251
26 Feb 2014 — Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted clef atom in a movie file. Desbordamiento de buffer en Apple QuickTime anterior a 7.7.5 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de un átomo clef manipulado en un archivo de vídeo. This vulnerability allows remote attackers to execute arbitrary code on vulnerable instal... • http://support.apple.com/kb/HT6151 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 3%CPEs: 6EXPL: 0CVE-2010-1819
https://notcve.org/view.php?id=CVE-2010-1819
27 Dec 2013 — Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) CoreVideo.dll, (2) CoreGraphics.dll, or (3) CoreAudioToolbox.dll that is located in the same folder as a .pic image file. Vulnerabilidad de ruta de búsqueda no confiable en Picture Viewer en Apple QuickTime anteriores a 7.6.8 permite a usuarios locales, y posiblemente a atacantes remotos... • http://lists.apple.com/archives/security-announce/2010/Sep/msg00003.html •
CVSS: 8.8EPSS: 2%CPEs: 6EXPL: 0CVE-2013-1032 – Apple Security Advisory 2013-09-12-1
https://notcve.org/view.php?id=CVE-2013-1032
13 Sep 2013 — QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted idsc atom in a QuickTime movie file. QuickTime en Apple Mac OS X anterior a 10.8.5, permite a atacantes remotos ejecutar comandos a discrección o provocar una denegación de servicio (corrupción de memoria y caída de aplicación) a través de un idsc atom manipulado en un archivo de vídeo de QuickTime. OS X Mountain Lion v10.8.5 and Sec... • http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 3%CPEs: 56EXPL: 0CVE-2013-0986 – Apple QuickTime enof Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0986
23 May 2013 — Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted enof atoms in a movie file. Desbordamiento de búfer en Apple QuickTime antes de v7.7.4 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de átomos ENOF manipulados en un archivo de película. This vulnerability allows remote attackers to execute arbitrary code on vulnerable install... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 4%CPEs: 55EXPL: 0CVE-2013-0987 – Apple Security Advisory 2013-06-04-1
https://notcve.org/view.php?id=CVE-2013-0987
23 May 2013 — Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QTIF file. Apple QuickTime antes de v7.7.4 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un archivo QTIF modificado. QuickTime 7.7.4 is now available and addresses multiple issues including buffer overflows and arbitrary code execution vulnerabilities. • http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 6%CPEs: 55EXPL: 0CVE-2013-0988 – Apple QuickTime FlashPix Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0988
23 May 2013 — Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FPX file. Desbordamiento de búfer en Apple QuickTime antes de v7.7.4 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de un archivo FPX modificado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interact... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 6%CPEs: 55EXPL: 0CVE-2013-0989 – Apple QuickTime MP3 Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-0989
23 May 2013 — Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP3 file. Desbordamiento de búfer en Apple QuickTime antes de v7.7.4 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de un archivo MP3 modificado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interact... • http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 5%CPEs: 55EXPL: 0CVE-2013-1015 – Apple QuickTime TeXML textBox Element Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1015
23 May 2013 — Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted TeXML file. Apple QuickTime antes de 7.7.4 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un archivo TeXML modificado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerabi... • http://lists.apple.com/archives/security-announce/2013/May/msg00001.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •